Candidate: CVE-2009-2185
PublicDate: 2009-06-25 02:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2185
Description:
 The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c,
 libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2
 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and
 2.4 before 2.4.15 allows remote attackers to cause a denial of service
 (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative
 Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted
 GENERALIZEDTIME string.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=533837
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_strongswan:
upstream_strongswan: needs-triage
dapper_strongswan: DNE
hardy_strongswan: ignored (reached end-of-life)
intrepid_strongswan: needed (reached end-of-life)
jaunty_strongswan: ignored (reached end-of-life)
karmic_strongswan: ignored (reached end-of-life)
lucid_strongswan: not-affected (4.3.2-1.1ubuntu1)
maverick_strongswan: not-affected (4.3.2-1.1ubuntu1)
natty_strongswan: not-affected (4.3.2-1.1ubuntu1)
oneiric_strongswan: not-affected (4.3.2-1.1ubuntu1)
devel_strongswan: not-affected (4.3.2-1.1ubuntu1)

Patches_openswan:
upstream_openswan: released (1:2.6.22+dfsg-1)
dapper_openswan: ignored (reached end-of-life)
hardy_openswan: released (1:2.4.9+dfsg-1ubuntu0.1)
intrepid_openswan: released (1:2.4.12+dfsg-1.3+lenny2build0.8.10.1)
jaunty_openswan: released (1:2.4.12+dfsg-1.3+lenny2build0.9.04.1)
karmic_openswan: not-affected
lucid_openswan: not-affected
maverick_openswan: not-affected
natty_openswan: not-affected
oneiric_openswan: not-affected
devel_openswan: not-affected