Candidate: CVE-2013-6076
PublicDate: 2013-11-02 18:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6076
 http://www.strongswan.org/blog/2013/11/01/strongswan-denial-of-service-vulnerability-%28cve-2013-6076%29.html
Description:
 strongSwan 5.0.2 through 5.1.0 allows remote attackers to cause a denial of
 service (NULL pointer dereference and charon daemon crash) via a crafted
 IKEv1 fragmentation packet.
Ubuntu-Description:
Notes:
 mdeslaur> doesn't affect 4.x
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_strongswan:
upstream_strongswan: released (5.1.0-3)
lucid_strongswan: ignored (reached end-of-life)
precise_strongswan: not-affected
quantal_strongswan: not-affected
raring_strongswan: not-affected
saucy_strongswan: not-affected
devel_strongswan: not-affected (5.1.0-3)