Ubuntu Update For Strongswan USN-2450-1 Network Vulnerability

Summary

Check the version of strongswan

Solution

Please Install the Updated Packages.

Insight

Mike Daskalakis discovered that strongSwan incorrectly handled IKEv2 payloads that contained the Diffie-Hellman group 1025. A remote attacker could use this issue to cause the IKE daemon to crash, resulting in a denial of service.

Affected

strongswan on Ubuntu 14.10 , Ubuntu 14.04 LTS

Detection

Get the installed version with the help of detect NVT and check if the version is vulnerable or not.

Severity

Classification

CVE CVE-2014-9221
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for bind9 vulnerabilities USN-1025-1
Ubuntu Update for cinder USN-2248-1
Ubuntu Update for cinder USN-2208-1
Ubuntu Update for clamav vulnerability USN-1076-1
Ubuntu Update for dnsmasq vulnerability USN-627-1

Ubuntu Update for strongswan USN-2450-1

Take action and discover your vulnerabilities