CVE-2006-0905
Published: 23 March 2006
A "programming error" in fast_ipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and conduct replay attacks.
Priority
Status
Package | Release | Status |
---|---|---|
kfreebsd-5 Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Released
(5.4-17)
|
|
feisty |
Released
(5.4-17)
|
|
gutsy |
Released
(5.4-17)
|
|
hardy |
Released
(5.4-17)
|
|
intrepid |
Released
(5.4-17)
|
|
jaunty |
Does not exist
|
|
karmic |
Does not exist
|
|
upstream |
Needs triage
|