Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Ubuntu 12.04 ESM USN-3482-1 Moderate: Crash of ipsec-tools from Traffic

Calendar Nov 16, 2017 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service Ubuntu ipsec-tools network attack
ipsec-tools could be made to crash if it received specially crafted network traffic. 
=========================================================================Ubuntu Security Notice USN-3482-1
November 16, 2017

ipsec-tools vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 ESM

Summary:

ipsec-tools could be made to crash if it received specially crafted
network traffic.

Software Description:
- ipsec-tools: IPsec tools for Linux

Details:

It was discovered that racoon, the ipsec-tools IKE daemon, incorrectly
handled certain ISAKMP fragments. A remote attacker could use this
issue to cause racoon to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  ipsec-tools                     1:0.8.0-9ubuntu1.2
  racoon                          1:0.8.0-9ubuntu1.2

In general, a standard system update will make all the necessary
changes.

References:
  https://ubuntu.com/security/notices/USN-3482-1
  CVE-2016-10396

Ubuntu 12.04 ESM USN-3482-1 Moderate: Crash of ipsec-tools from Traffic

ubuntu
Calendar Grey November 16, 2017
Dist Ubuntu Esm H88
A security flaw in ipsec-tools results in system crashes on Ubuntu platforms, which in turn leads to a denial of service situation that disrupts network communications.
ipsec-tools could be made to crash if it received specially crafted network traffic.

Summary

Topics%20covered

Topics Covered

security advisory denial of service Ubuntu ipsec-tools network attack

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 ESM:   ipsec-tools                     1:0.8.0-9ubuntu1.2   racoon                          1:0.8.0-9ubuntu1.2 In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-3482-1

  CVE-2016-10396

November 16, 2017

Topics%20covered

Topics Covered

security advisory denial of service Ubuntu ipsec-tools network attack

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here