Oval Definition:oval:org.opensuse.security:def:20092185
Revision Date:2022-05-20Version:1
Title:CVE-2009-2185
Description:

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-2185
Mitre CVE-2009-2185
SUSE CVE-2009-2185
SUSE-SR:2009:013
SUSE-SR:2009:013
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
openSUSE 10.3
openSUSE 11.0
openSUSE 11.1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 GA
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server for SAP Applications 11
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • openswan-2.6.16-1.36.1 is installed
  • OR openswan-doc-2.6.16-1.36.1 is installed
    • Definition Synopsis
  • Release Information
  • suse110 is installed
  • strongswan-doc less than 4.2.1-11.10
  • OR strongswan less than 4.2.1-11.10
  • OR
  • suse111 is installed
  • strongswan-doc less than 4.2.8-1.26.1
  • OR strongswan less than 4.2.8-1.26.1
  • OR Package Information
  • suse110 is installed
  • openswan-doc less than 2.4.7-130.4
  • OR openswan less than 2.4.7-130.4
  • OR
  • suse111 is installed
  • openswan-doc less than 2.6.16-1.48.1
  • OR openswan less than 2.6.16-1.48.1
  • OR Package Information
  • sles9-nld is installed
  • AND freeswan less than 2.04_1.5.4-1.26
  • OR Package Information
  • sles11 is installed
  • AND
  • strongswan-doc less than 4.2.8-1.24.1
  • OR strongswan less than 4.2.8-1.24.1
  • OR Package Information
  • sles11 is installed
  • AND
  • openswan-doc less than 2.6.16-1.33.1
  • OR openswan less than 2.6.16-1.33.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 is installed
  • AND
  • openswan-2.6.16-1.33 is installed
  • OR openswan-doc-2.6.16-1.33 is installed
  • OR strongswan-4.2.8-1.24 is installed
  • OR strongswan-doc-4.2.8-1.24 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • openswan-2.6.16-1.34 is installed
  • OR openswan-doc-2.6.16-1.34 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • openswan-2.6.16-1.36 is installed
  • OR openswan-doc-2.6.16-1.36 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • openswan-2.6.16-1.34.3 is installed
  • OR openswan-doc-2.6.16-1.34.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • openswan-2.6.16-1.36.1 is installed
  • OR openswan-doc-2.6.16-1.36.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 is installed
  • AND
  • openswan-2.6.16-1.33.1 is installed
  • OR openswan-doc-2.6.16-1.33.1 is installed
  • OR strongswan-4.2.8-1.24.1 is installed
  • OR strongswan-doc-4.2.8-1.24.1 is installed
    • BACK