Login
Newsletter
Werbung
Sicherheit: Denial of Service in ipsec-tools
Aktuelle Meldungen Distributionen
Name: Denial of Service in ipsec-tools
ID: USN-107-1
Distribution: Ubuntu
Plattformen: Ubuntu 4.10
Datum: Di, 5. April 2005, 13:00
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0398
Applikationen: IPsec-Tools

Originalnachricht

 
===========================================================
Ubuntu Security Notice USN-107-1	     April 05, 2005
ipsec-tools vulnerability
CAN-2005-0398
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

racoon

The problem can be corrected by upgrading the affected package to
version 0.3.3-1ubuntu0.1.  In general, a standard system upgrade is
sufficient to effect the necessary changes.

Details follow:

Sebastian Krahmer discovered a Denial of Service vulnerability in the
racoon daemon. By sending specially crafted ISAKMP packets, a remote
attacker could trigger a buffer overflow which caused racoon to crash.

This update does not introduce any source code changes affecting the
ipsec-tools package.  It is necessary to update the version number of
the package in order to support an update to the "racoon" package.
Please note that racoon is not officially supported by Ubuntu (it is
in the "universe" component of the archive).

  Source archives:

    ipsec-tools_0.3.3-1ubuntu0.1.diff.gz
      Size/MD5:   191538 4cde6e53403236be32d6640b0c3e0482
    ipsec-tools_0.3.3-1ubuntu0.1.dsc
      Size/MD5:      705 022ba833374033ad5089ff1250dd0360
    ipsec-tools_0.3.3.orig.tar.gz
      Size/MD5:   864122 b141da8ae299c8fdc53e536f6bbc3ad0

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    ipsec-tools_0.3.3-1ubuntu0.1_amd64.deb
      Size/MD5:   106112 96d79a33ea9fca8a4e62b9be790ecc91
    racoon_0.3.3-1ubuntu0.1_amd64.deb
      Size/MD5:   201304 800c93f6ea50b99b635364b8acb98d7b

  i386 architecture (x86 compatible Intel/AMD)

    ipsec-tools_0.3.3-1ubuntu0.1_i386.deb
      Size/MD5:   101104 f36df353beb372625da1aaefd7f641e5
    racoon_0.3.3-1ubuntu0.1_i386.deb
      Size/MD5:   186172 d0213fee3f32816c0e83c227064891fc

  powerpc architecture (Apple Macintosh G3/G4/G5)

    ipsec-tools_0.3.3-1ubuntu0.1_powerpc.deb
      Size/MD5:   108824 cc6193f450715b21e4c16b8bea002399
    racoon_0.3.3-1ubuntu0.1_powerpc.deb
      Size/MD5:   195936 4ab4dd044d8f31d17d8022bcd8539370





-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
http://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung