Overview

File _patchinfo of Package patchinfo.6589

<patchinfo incident="6589">
  <issue id="1047443" tracker="bnc">VUL-0: CVE-2016-10396: ipsec-tools:  remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments</issue>
  <issue id="2016-10396" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jbohac</packager>
  <description>This update for ipsec-tools fixes one issue.

This security issue was fixed:

- CVE-2016-10396: The racoon daemon contained a remotely exploitable
  computational-complexity attack when parsing and storing ISAKMP fragments that
  allowed a remote attacker to exhaust computational resources on the remote
  endpoint by repeatedly sending ISAKMP fragment packets in a particular order
  (bsc#1047443).
</description>
  <summary>Security update for ipsec-tools</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places