[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

CESA-2009:1036 -- centos 5 i386 ipsec-tools

ID: oval:org.secpod.oval:def:201963Date: (C)2012-01-31   (M)2017-10-04
Class: PATCHFamily: unix




The ipsec-tools package is used in conjunction with the IPsec functionality in the Linux kernel and includes racoon, an IKEv1 keying daemon. A denial of service flaw was found in the ipsec-tools racoon daemon. An unauthenticated, remote attacker could trigger a NULL pointer dereference that could cause the racoon daemon to crash. Multiple memory leak flaws were found in the ipsec-tools racoon daemon. If a remote attacker is able to make multiple connection attempts to the racoon daemon, it was possible to cause the racoon daemon to consume all available memory. Users of ipsec-tools should upgrade to this updated package, which contains backported patches to correct these issues. Users must restart the racoon daemon for this update to take effect.

Platform:
CentOS 5
Product:
ipsec-tools
Reference:
CESA-2009:1036
CVE-2009-1574
CVE-2009-1632
CVE    2
CVE-2009-1632
CVE-2009-1574
CPE    2
cpe:/a:ipsec_tools:ipsec_tools
cpe:/o:centos:centos:5

© 2013 SecPod Technologies