Candidate: CVE-2010-2628
PublicDate: 2010-08-20 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2628
Description:
 The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does
 not properly check the return values of snprintf calls, which allows remote
 attackers to execute arbitrary code via crafted (1) certificate or (2)
 identity data that triggers buffer overflows.
Ubuntu-Description:
Notes:
 kees> this may already be mitigated by FORTIFY_SOURCE
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_strongswan:
upstream_strongswan: released (4.4.1)
dapper_strongswan: DNE
hardy_strongswan: ignored (reached end-of-life)
jaunty_strongswan: ignored (reached end-of-life)
karmic_strongswan: ignored (reached end-of-life)
lucid_strongswan: ignored (reached end-of-life)
maverick_strongswan: ignored (reached end-of-life)
natty_strongswan: not-affected (4.4.1-5ubuntu1)
oneiric_strongswan: not-affected (4.4.1-5ubuntu1)
precise_strongswan: not-affected (4.4.1-5ubuntu1)
quantal_strongswan: not-affected (4.4.1-5ubuntu1)
raring_strongswan: not-affected (4.4.1-5ubuntu1)
saucy_strongswan: not-affected (4.4.1-5ubuntu1)
devel_strongswan: not-affected (4.4.1-5ubuntu1)