VDB

GCVE-110-MAGEIA-2015-243

GCVE-110-MAGEIA-2015-243
Advisory Published
Vulnetix · Advisory published June 8, 2015
Updated ipsec-tools packages fix security vulnerability: Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of service (CVE-2015-4047).

Affected Products

VendorProductVersionsPlatforms
Mageiaipsec-tools0 (affected), 0.8.1-2.1.mga4 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›