Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 9: 2009-4291 Moderate: Ipsec-Tools Remote Denial of Service Fix

fedora
Calendar Grey May 18, 2009
Dist Fedora Esm H88
Minor update for ipsec-tools on Fedora to address remote DoS exploits, with essential installation steps included.
Minor version update from upstream fixing remote DoS.

Summary

This is the IPsec-Tools package. You need this package in order to

really use the IPsec functionality in the linux-2.5+ kernels. This

package builds:

- setkey, a program to directly manipulate policies and SAs

- racoon, an IKEv1 keying daemon

Update Information:

Minor version update from upstream fixing remote DoS.

Topics%20covered

Topics Covered

security advisory moderate Fedora remote DoS ipsec-tools

Change Log

* Tue May 5 2009 Tomas Mraz - 0.7.2-1 - Update to a new upstream version * Wed Feb 25 2009 Fedora Release Engineering - 0.7.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Thu Jan 15 2009 Tomas Mraz - 0.7.1-7 - rebuild with new openssl * Mon Nov 10 2008 Tomas Mraz - 0.7.1-6 - fix patch porting error in the dpd-fixes patch (#470575) * Fri Oct 17 2008 Tomas Mraz - 0.7.1-5 - fix CVE-2008-3652 (memory leak DoS) - compile racoon as PIE - another fix for teardown of the IPSEC SAs on DPD in some circumstances * Sun Aug 10 2008 Tomas Mraz - 0.7.1-4 - Even better fix for IPSEC SA purging avoiding code duplication (original idea by Darrel Goeddel) * Fri Aug 8 2008 Tomas Mraz - 0.7.1-3 - Fix IPSEC SA purge with NAT_T enabled * Wed Jul 30 2008 Tomas Mraz - 0.7.1-2 - Different approach to allow racoon to add loopback SAs for labeled IPSec (without ISAKMP) * Tue Jul 29 2008 Tomas Mraz - 0.7.1-1 - Update to a new upstream version

References


[ 1 ] Bug #497990 - ipsec-tools: racoon NULL dereference in fragmentation code https://bugzilla.redhat.com/show_bug.cgi?id=497990

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update ipsec-tools' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: ipsec-tools
Product: Fedora 9
Version: 0.7.2
Release: 1.fc9
URL: https://ipsec-tools.sourceforge.net/
Summary: Tools for configuring and using IPSEC

Topics%20covered

Topics Covered

security advisory moderate Fedora remote DoS ipsec-tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here