Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA 200404-17 Normal: ipsec-tools DoS Risk and Advisory

gentoo
Calendar Grey April 24, 2004
Dist Gentoo Esm H88
A remote DDoS vulnerability has been identified in the ipsec-tools and iputils packages of Gentoo. It is strongly advised to upgrade these packages to minimize potential threats.
racoon, which is included in the ipsec-tools and iputils packages in Portage, does not check the length of ISAKMP headers

Summary

Gentoo Linux Security Advisory GLSA 200404-17 https://security.gentoo.org/ Severity: Normal Title: ipsec-tools and iputils contain a remote DoS vulnerability
Date: April 24, 2004 Bugs: #48847 ID: 200404-17

Synopsis ======= racoon, which is included in the ipsec-tools and iputils packages in Portage, does not check the length of ISAKMP headers. Attackers may be able to craft an ISAKMP header of sufficient length to consume all available system resoources, causing a Denial of Service.
Background ========= From :
"IPsec-Tools is a port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation."
iputils is a collection of network monitoring tools, including racoon, ping and ping6.
Affected packages ================ ---------------------------------------------------------------...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory ipsec-tools DoS threat normal severity iputils

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory ipsec-tools DoS threat normal severity iputils

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here