CVE-2009-2185

strongSwan 2.8-2.8.9, 4.2-4.2.15, 4.3-4.3.1 - Denial of Service via ASN.1 Parser

Title source: llm
STIX 2.1

Description

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.

References (24)

Core 24
Core References
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1639
Various Sources x_refsource_confirm
http://www.ingate.com/Relnote.php?ver=481
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35740
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1022428
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-1138.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1706
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11079
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36950
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35522
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36922
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37504
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2009/dsa-1899
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/35452
Vendor Advisory x_refsource_confirm
http://download.strongswan.org/CHANGES42.txt
Vendor Advisory x_refsource_confirm
http://download.strongswan.org/CHANGES2.txt
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2009/dsa-1898
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1829
Vendor Advisory vendor-advisory x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00337.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35698
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3354
Vendor Advisory x_refsource_confirm
http://download.strongswan.org/CHANGES4.txt
Vendor Advisory vendor-advisory x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00264.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35804

Scores

EPSS 0.0237
EPSS Percentile 81.9%

Details

CWE
CWE-20
Status published
Products (50)
strongswan/strongswan 2.8.0
strongswan/strongswan 2.8.1
strongswan/strongswan 2.8.2
strongswan/strongswan 2.8.3
strongswan/strongswan 2.8.4
strongswan/strongswan 2.8.5
strongswan/strongswan 2.8.6
strongswan/strongswan 2.8.7
strongswan/strongswan 2.8.8
strongswan/strongswan 2.8.9
... and 40 more
Published Jun 25, 2009
Tracked Since Feb 18, 2026