OVAL Reference oval:org.mitre.oval:def:23764

Oval Definition:

oval:org.mitre.oval:def:23764

Revision Date:	2014-05-26	Version:	13
Title:	ELSA-2013:0827: openswan security update (Important)
Description:	Buffer overflow in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE daemon crash) and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be the same vulnerability as CVE-2013-2052 and CVE-2013-2054.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2013-2053 ELSA-2013:0827-01
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	openswan
Definition Synopsis
rpm test Oracle Linux 6.x AND rpm test openswan is earlier than 0:2.6.32-20.el6_4 OR openswan-doc is earlier than 0:2.6.32-20.el6_4 OR rpm test Oracle Linux 5.x AND rpm test openswan is earlier than 0:2.6.32-5.el5_9 OR openswan-doc is earlier than 0:2.6.32-5.el5_9