Modify

Opened 5 years ago

Last modified 4 years ago

#13501 new defect

Tinc-VPN: DoS-/crash-vulnerability CVE-2013-1428

Reported by: renne Owned by: developers
Priority: normal Milestone: Barrier Breaker 14.07
Component: packages Version: Attitude Adjustment 12.09
Keywords: tinc vpn dos crash vulnerability cve 2013-1428 Cc: rene@…

Description

Tinc-versions before 1.0.21 crash if they receive a TCP-packet which is too big.
Oversized TCP-packets can be used for DoS-attacks.

See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1428 for further information.

Solution: Upgrade to Tinc-VPN 1.0.21

Attachments (0)

Change History (1)

comment:1 Changed 4 years ago by jow

  • Milestone changed from Attitude Adjustment 12.09 to Barrier Breaker 14.07

Milestone Attitude Adjustment 12.09 deleted

Add Comment

Modify Ticket

Action
as new .
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.