Mandriva Linux Security Advisory 2009-114 – Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denial of service (memory consumption) via vectors involving (1) signature verification during user authentication with X.509 certificates, related to the eay_check_x509sign function in src/racoon/crypto_openssl.c; and (2) the NAT-Traversal (aka NAT-T) keepalive implementation, related to src/racoon/nattraversal.c. The updated packages have been patched to prevent this.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/77616/MDVSA-2009-114.txt
Source: https://packetstormsecurity.com/files/77616/Mandriva-Linux-Security-Advisory-2009-114.html