Launchpad CVE tracker

CVE 2010-3308

Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via a long cisco_banner (aka server_banner) field.

Related bugs and status

CVE-2010-3308 (Candidate) is related to these bugs:

Bug #914015: Sync openswan 1:2.6.37-1 (universe) from Debian testing (main)

Summary				In	Importance	Status
	914015	Sync openswan 1:2.6.37-1 (universe) from Debian testing (main)		openswan (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securitytra...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.vupen.com/e...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: http://www.redhat.com/...
MISC: http://www.openswan.or...
MISC: http://www.openswan.or...

Launchpad.net

CVE 2010-3308

Related bugs and status

Related bugs

References