PublicDate: 2008-08-13 01:41:00 UTC
Candidate: CVE-2008-3652
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3652
 https://ubuntu.com/security/notices/USN-641-1
Description:
 src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned
 ph1" (phase 1) handle when it has been initiated remotely, which allows
 remote attackers to cause a denial of service (resource consumption).
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to: kees
CVSS: 

Patches_ipsec-tools:
upstream_ipsec-tools: pending
dapper_ipsec-tools: released (1:0.6.5-4ubuntu1.2)
feisty_ipsec-tools: released (1:0.6.6-3ubuntu3.1)
gutsy_ipsec-tools: released (1:0.6.6-3.1ubuntu3.1)
hardy_ipsec-tools: released (1:0.6.7-1.1ubuntu1.1)
intrepid_ipsec-tools: not-affected
devel_ipsec-tools: not-affected