What Are You Looking For?

Sign Up
Date:         Tue, 31 Mar 2009 15:00:27 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Important: openswan on SL5.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Important: openswan security update
Issue date:	2009-03-30
CVE Names:	CVE-2008-4190 CVE-2009-0790

Gerd v. Egidy discovered a flaw in the Dead Peer Detection (DPD) in
Openswan's pluto IKE daemon. A remote attacker could use a malicious DPD
packet to crash the pluto daemon. (CVE-2009-0790)

It was discovered that Openswan's livetest script created temporary 
files in an insecure manner. A local attacker could use this flaw to 
overwritearbitrary files owned by the user running the script. 
(CVE-2008-4190)

After installing this update, the ipsec service will be restarted 
automatically.

SL 5.x

     SRPMS:
openswan-2.6.14-1.el5_3.2.src.rpm
     i386:
openswan-2.6.14-1.el5_3.2.i386.rpm
openswan-doc-2.6.14-1.el5_3.2.i386.rpm
     x86_64:
openswan-2.6.14-1.el5_3.2.x86_64.rpm
openswan-doc-2.6.14-1.el5_3.2.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2008-4190 Important: openswan SL5.x i386/x86_64

Important: openswan security update

Summary

Date:         Tue, 31 Mar 2009 15:00:27 -0500Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      Security ERRATA Important: openswan on SL5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov"          Synopsis:	Important: openswan security updateIssue date:	2009-03-30CVE Names:	CVE-2008-4190 CVE-2009-0790Gerd v. Egidy discovered a flaw in the Dead Peer Detection (DPD) inOpenswan's pluto IKE daemon. A remote attacker could use a malicious DPDpacket to crash the pluto daemon. (CVE-2009-0790)It was discovered that Openswan's livetest script created temporary files in an insecure manner. A local attacker could use this flaw to overwritearbitrary files owned by the user running the script. (CVE-2008-4190)After installing this update, the ipsec service will be restarted automatically.SL 5.x     SRPMS:openswan-2.6.14-1.el5_3.2.src.rpm     i386:openswan-2.6.14-1.el5_3.2.i386.rpmopenswan-doc-2.6.14-1.el5_3.2.i386.rpm     x86_64:openswan-2.6.14-1.el5_3.2.x86_64.rpmopenswan-doc-2.6.14-1.el5_3.2.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo