Bugtraq mailing list archives
[ GLSA 200503-33 ] IPsec-Tools: racoon Denial of Service
From: Matthias Geerdsen <vorlon () gentoo org>
Date: Fri, 25 Mar 2005 19:25:13 +0100
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200503-33 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: IPsec-Tools: racoon Denial of Service Date: March 25, 2005 Bugs: #84479 ID: 200503-33 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== IPsec-Tools' racoon is affected by a remote Denial of Service vulnerability. Background ========== IPsec-Tools is a port of KAME's implementation of the IPsec utilities. It contains a collection of network monitoring tools, including racoon, ping, and ping6. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-firewall/ipsec-tools < 0.5-r1 *>= 0.4-r1 >= 0.5-r1 Description =========== Sebastian Krahmer has reported a potential remote Denial of Service vulnerability in the ISAKMP header parsing code of racoon. Impact ====== An attacker could possibly cause a Denial of Service of racoon using a specially crafted ISAKMP packet. Workaround ========== There is no known workaround at this time. Resolution ========== All IPsec-Tools users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-firewall/ipsec-tools-0.4-r1" References ========== [ 1 ] CAN-2005-0398 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0398 [ 2 ] ipsec-tools-devel posting http://sourceforge.net/mailarchive/forum.php?thread_id=6787713&forum_id=32000 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200503-33.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security () gentoo org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0
Attachment:
_bin
Description:
Current thread:
- [ GLSA 200503-33 ] IPsec-Tools: racoon Denial of Service Matthias Geerdsen (Mar 25)