Candidate: CVE-2011-2147
PublicDate: 2011-05-20 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2147
Description:
 Openswan 2.2.x does not properly restrict permissions for (1)
 /var/run/starter.pid, related to starter.c in the IPsec starter, and (2)
 /var/lock/subsys/ipsec, which allows local users to kill arbitrary
 processes by writing a PID to a file, or possibly bypass disk quotas by
 writing arbitrary data to a file, as demonstrated by files with 0666
 permissions, a different vulnerability than CVE-2011-1784.
Ubuntu-Description:
Notes:
 sbeattie> according to debian bug, 2.4.x and newer is not affected
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=628449
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_openswan:
upstream_openswan: needs-triage
dapper_openswan: ignored (reached end-of-life)
hardy_openswan: not-affected
lucid_openswan: not-affected
maverick_openswan: not-affected
natty_openswan: not-affected
oneiric_openswan: not-affected
devel_openswan: not-affected