Version 4.2.7 » History » Version 1
Andreas Steffen, 29.04.2009 16:01
Milestone
| 1 | 1 | Andreas Steffen | Fixed a Denial-of-Service vulnerability where an IKE_SA_INIT message with |
|---|---|---|---|
| 2 | 1 | Andreas Steffen | a KE payload containing zeroes only can cause a crash of the IKEv2 charon |
| 3 | 1 | Andreas Steffen | daemon due to a NULL pointer returned by the mpz_export() function of the |
| 4 | 1 | Andreas Steffen | GNU Multiprecision Library (GMP). Thanks go to Mu Dynamics Research Labs |
| 5 | 1 | Andreas Steffen | for making us aware of this problem. |