Описание
Security update for ipsec-tools
ipsec-tools was updated to fix one security issue and a bug.
This security issue was fixed:
- CVE-2015-4047: racoon/gssapi.c in ipsec-tools allowed remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests (bsc#931989).
Due to a packaging error, the racoonf.conf config file was symlinked to /usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf on some processor platforms, edits might have happened only in this example file.
Before upgrading, please check if /etc/racoon/racoon.conf is a symlink to this example file and backup the content. (bsc#939810)
Список пакетов
SUSE Linux Enterprise Server 11 SP3
ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server 11 SP4
ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
ipsec-tools-0.7.3-1.13.1
Ссылки
- Link for SUSE-SU-2015:1367-1
- E-Mail link for SUSE-SU-2015:1367-1
- SUSE Security Ratings
- SUSE Bug 931989
- SUSE Bug 939810
- SUSE CVE CVE-2015-4047 page
Описание
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP3-TERADATA:ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server 11 SP3:ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server 11 SP4:ipsec-tools-0.7.3-1.13.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3:ipsec-tools-0.7.3-1.13.1
Ссылки
- CVE-2015-4047
- SUSE Bug 931989