Oval Definition:	oval:com.ubuntu.precise:def:20102628000
Revision Date: 2010-08-20 Version: 1 Title: CVE-2010-2628 on Ubuntu 12.04 LTS (precise) - medium. Description: The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted (1) certificate or (2) identity data that triggers buffer overflows. Family: unix Class: vulnerability Status: Reference(s): CVE-2010-2628 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'strongswan' package in precise is not affected (note: '4.4.1-5ubuntu1').
BACK