Bug 200334 - [security] security-ipsectools - null-derefence vulnerability
Summary: [security] security-ipsectools - null-derefence vulnerability
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Brad Davis
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-05-19 15:59 UTC by Sevan Janiyan
Modified: 2015-05-19 19:29 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sevan Janiyan 2015-05-19 15:59:12 UTC 
Outlined https://www.altsci.com/ipsec/
Fix in:
http://mail-index.netbsd.org/source-changes/2015/05/19/msg066116.html

initially in r1.5 then redone in r1.6 to avoid memory leak
Comment 1 commit-hook freebsd_committer freebsd_triage 2015-05-19 17:01:47 UTC 
A commit references this bug:

Author: brd
Date: Tue May 19 17:00:58 UTC 2015
New revision: 386793
URL: https://svnweb.freebsd.org/changeset/ports/386793

Log:
  Update ipsec-tools with a patch from NetBSD to fix a memory leak.

  PR:		200334 (reported in)
  Submitted by:	brd
  Approved by:	bdrewery (mentor, portmgr)
  MFH:		2015Q2

Changes:
  head/security/ipsec-tools/Makefile
  head/security/ipsec-tools/files/patch-src_racoon_gssapi.c
Comment 2 commit-hook freebsd_committer freebsd_triage 2015-05-19 19:28:07 UTC 
A commit references this bug:

Author: brd
Date: Tue May 19 19:27:39 UTC 2015
New revision: 386807
URL: https://svnweb.freebsd.org/changeset/ports/386807

Log:
  Document vulnerability in security/ipsec-tools.

  PR:		200334
  Approved by:	bdrewery (mentor)

Changes:
  head/security/vuxml/vuln.xml