Amazon Linux AMI : openswan Remote Crash Vulnerability (ALAS-2011-18)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote Amazon Linux AMI host is missing a security update.

Description :

Openswan is a free implementation of Internet Protocol Security
(IPsec) and Internet Key Exchange (IKE). IPsec uses strong
cryptography to provide both authentication and encryption services.
These services allow you to build secure tunnels through untrusted
networks.

A use-after-free flaw was found in the way Openswan's pluto IKE daemon
used cryptographic helpers. A remote, authenticated attacker could
send a specially crafted IKE packet that would crash the pluto daemon.
This issue only affected SMP (symmetric multiprocessing) systems that
have the cryptographic helpers enabled.

See also :

http://www.nessus.org/u?937b9481

Solution :

Run 'yum upgrade openswan' to upgrade your system.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P)

Family: Amazon Linux Local Security Checks

Nessus Plugin ID: 69577 ()

Bugtraq ID:

CVE ID: CVE-2011-4073