Comment 12 for bug 664371
Revision history for this message
| Tobias Brunner (tobias-strongswan) wrote Re: [Bug 664371] Re: pluto crashes with segfault | #12 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Hi Rene,
> Is there any chance of this being exploitable other than by causing
> a DoS based on admin-created configuration?
No. As far as I can see, this only happens if multiple certificates are
stored with the same ID on one smartcard. That's the only case the
added certificate object is actually the same as one of the stored
objects. Which is a bug itself, introduced with 4.3.6, so the proper
fix for this problem is the patch I just added to the bug report (and
will push to master if it fixes the problem).
Thanks and regards,
Tobias