Описание
ELSA-2007-0342: Moderate: ipsec-tools security update (MODERATE)
[0.6.5-8]
- Upstream fix for Racoon DOS, informational delete must be encrypted
- Resolves: rhbz#235388 - CVE-2007-1841 ipsec-tools racoon DoS
[0.6.5-7]
- Resolves: #218386 labeled ipsec does not work over loopback
[0.6.5-6.6]
- Related: #232508 add auditing to racoon
[0.6.5-6.5]
- Resolves: #235680 racoon socket descriptor exhaustion
[0.6.5-6.4]
- Resolves: #236121 increase buffer for context
[0.6.5-6.3]
- Resolves: #234491 kernel sends ACQUIRES that racoon is not catching
- Resolves: #218386 labeled ipsec does not work over loopback
[0.6.5-6.2.el5]
- fix for setting the security context into a proposal (32<->64bit)
- Resolves: rhbz#232508
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
ipsec-tools
0.6.5-8.el5
Oracle Linux i386
ipsec-tools
0.6.5-8.el5
Связанные CVE
Связанные уязвимости
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in ...
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.