2
Candidate: CVE-2005-0039
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0039
6
Certain configurations of IPsec, when using Encapsulating Security Payload
7
(ESP) in tunnel mode, integrity protection at a higher layer, or
8
Authentication Header (AH), allow remote attackers to decrypt IPSec
9
communications by modifying the outer packet in ways that cause plaintext
10
data from the inner packet to be returned in ICMP messages, as demonstrated
11
using bit-flipping attacks and (1) Destination Address Rewriting, (2) a
12
modified header length that causes portions of the packet to be interpreted
13
as IP Options, or (3) a modified protocol field and source address.
17
dapper_openswan: not-affected
18
edgy_openswan: not-affected
19
feisty_openswan: not-affected
20
devel_openswan: not-affected