Oval Definition:oval:org.opensuse.security:def:20102628
Revision Date:2022-05-20Version:1
Title:CVE-2010-2628
Description:

The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted (1) certificate or (2) identity data that triggers buffer overflows.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2010-2628
Mitre CVE-2010-2628
SUSE CVE-2010-2628
openSUSE-SU-2010:0496-1
openSUSE-SU-2010:0496-1
SUSE-SR:2010:015
SUSE-SR:2010:015
Platform(s):openSUSE 11.2
openSUSE 11.3
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
Product(s):
Definition Synopsis
  • Release Information
  • sled11-sp1 is installed
  • AND
  • strongswan-doc less than 4.3.4-3.4.1
  • OR strongswan less than 4.3.4-3.4.1
  • OR Package Information
  • suse112 is installed
  • strongswan-doc less than 4.3.4-4.4.1
  • OR strongswan less than 4.3.4-4.4.1
  • OR
  • suse113 is installed
  • strongswan-doc less than 4.4.0-4.1.1
  • OR strongswan-ikev1 less than 4.4.0-4.1.1
  • OR strongswan-ikev2 less than 4.4.0-4.1.1
  • OR strongswan-ipsec less than 4.4.0-4.1.1
  • OR strongswan-libs0 less than 4.4.0-4.1.1
  • OR strongswan-nm less than 4.4.0-4.1.1
  • OR strongswan less than 4.4.0-4.1.1
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND Package Information
  • strongswan-4.3.4-3.4 is installed
  • OR strongswan-doc-4.3.4-3.4 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND Package Information
  • strongswan-4.3.4-3.4 is installed
  • OR strongswan-doc-4.3.4-3.4 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND Package Information
  • strongswan-4.3.4-3.4.1 is installed
  • OR strongswan-doc-4.3.4-3.4.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 is installed
  • AND strongswan is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • strongswan-4.3.4-3.4.1 is installed
  • OR strongswan-doc-4.3.4-3.4.1 is installed
    • BACK