Skip to navigation

Security Advisory ipsec-tools security update

Advisory: RHSA-2006:0267-11
Type: Security Advisory
Severity: Moderate
Issued on: 2006-04-25
Last updated on: 2006-04-25
Affected Products: Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2005-3732

Details

Updated ipsec-tools packages that fix a bug in racoon are now available.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

The ipsec-tools package is used in conjunction with the IPsec functionality
in the linux kernel and includes racoon, an IKEv1 keying daemon.

A denial of service flaw was found in the ipsec-tools racoon daemon. If a
victim's machine has racoon configured in a non-recommended insecure
manner, it is possible for a remote attacker to crash the racoon daemon.
(CVE-2005-3732)

Users of ipsec-tools should upgrade to these updated packages, which contain
backported patches, and are not vulnerable to these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Desktop (v. 3)

SRPMS:
ipsec-tools-0.2.5-0.7.rhel3.3.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: 947910c457600879145e041862e0bcb0
 
IA-32:
ipsec-tools-0.2.5-0.7.rhel3.3.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: dbbb9bcc93832b082f98f9a1964ac0a3
 
x86_64:
ipsec-tools-0.2.5-0.7.rhel3.3.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: fb8b6c328d33ff990a016cd93f5b5c2e
 
Red Hat Desktop (v. 4)

SRPMS:
ipsec-tools-0.3.3-6.rhel4.1.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: aed36ce0deb098bda284977fa2f9af04
 
IA-32:
ipsec-tools-0.3.3-6.rhel4.1.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: af514b3e19ce362c30f42c072751ca7c
 
x86_64:
ipsec-tools-0.3.3-6.rhel4.1.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 7db930f40bb68f77de42997f4b43cff6
 
Red Hat Enterprise Linux AS (v. 3)

SRPMS:
ipsec-tools-0.2.5-0.7.rhel3.3.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: 947910c457600879145e041862e0bcb0
 
IA-32:
ipsec-tools-0.2.5-0.7.rhel3.3.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: dbbb9bcc93832b082f98f9a1964ac0a3
 
IA-64:
ipsec-tools-0.2.5-0.7.rhel3.3.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 6c97ef7c2dfea1f077c37d3065645495
 
PPC:
ipsec-tools-0.2.5-0.7.rhel3.3.ppc.rpm
File outdated by:  RHSA-2008:0849
    MD5: eb22e79ec0ccb8e546b612749963f5ee
 
s390:
ipsec-tools-0.2.5-0.7.rhel3.3.s390.rpm
File outdated by:  RHSA-2008:0849
    MD5: 7e20191320ddf9d230b75a8f63fe315e
 
s390x:
ipsec-tools-0.2.5-0.7.rhel3.3.s390x.rpm
File outdated by:  RHSA-2008:0849
    MD5: 93892dbdb5c9d0d85ca65c6651655b19
 
x86_64:
ipsec-tools-0.2.5-0.7.rhel3.3.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: fb8b6c328d33ff990a016cd93f5b5c2e
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
ipsec-tools-0.3.3-6.rhel4.1.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: aed36ce0deb098bda284977fa2f9af04
 
IA-32:
ipsec-tools-0.3.3-6.rhel4.1.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: af514b3e19ce362c30f42c072751ca7c
 
IA-64:
ipsec-tools-0.3.3-6.rhel4.1.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 2f9fbde3de938d4f1ec7c437fb6c91e7
 
PPC:
ipsec-tools-0.3.3-6.rhel4.1.ppc.rpm
File outdated by:  RHSA-2008:0849
    MD5: fb37df4b25abdda16d46e9ba78bf916c
 
s390:
ipsec-tools-0.3.3-6.rhel4.1.s390.rpm
File outdated by:  RHSA-2008:0849
    MD5: 3bf00b8901eeb2a04f75d532ca3f4650
 
s390x:
ipsec-tools-0.3.3-6.rhel4.1.s390x.rpm
File outdated by:  RHSA-2008:0849
    MD5: 09de8693ab709c025a4cbf5d5b7acde3
 
x86_64:
ipsec-tools-0.3.3-6.rhel4.1.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 7db930f40bb68f77de42997f4b43cff6
 
Red Hat Enterprise Linux ES (v. 3)

SRPMS:
ipsec-tools-0.2.5-0.7.rhel3.3.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: 947910c457600879145e041862e0bcb0
 
IA-32:
ipsec-tools-0.2.5-0.7.rhel3.3.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: dbbb9bcc93832b082f98f9a1964ac0a3
 
IA-64:
ipsec-tools-0.2.5-0.7.rhel3.3.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 6c97ef7c2dfea1f077c37d3065645495
 
x86_64:
ipsec-tools-0.2.5-0.7.rhel3.3.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: fb8b6c328d33ff990a016cd93f5b5c2e
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
ipsec-tools-0.3.3-6.rhel4.1.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: aed36ce0deb098bda284977fa2f9af04
 
IA-32:
ipsec-tools-0.3.3-6.rhel4.1.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: af514b3e19ce362c30f42c072751ca7c
 
IA-64:
ipsec-tools-0.3.3-6.rhel4.1.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 2f9fbde3de938d4f1ec7c437fb6c91e7
 
x86_64:
ipsec-tools-0.3.3-6.rhel4.1.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 7db930f40bb68f77de42997f4b43cff6
 
Red Hat Enterprise Linux WS (v. 3)

SRPMS:
ipsec-tools-0.2.5-0.7.rhel3.3.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: 947910c457600879145e041862e0bcb0
 
IA-32:
ipsec-tools-0.2.5-0.7.rhel3.3.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: dbbb9bcc93832b082f98f9a1964ac0a3
 
IA-64:
ipsec-tools-0.2.5-0.7.rhel3.3.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 6c97ef7c2dfea1f077c37d3065645495
 
x86_64:
ipsec-tools-0.2.5-0.7.rhel3.3.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: fb8b6c328d33ff990a016cd93f5b5c2e
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
ipsec-tools-0.3.3-6.rhel4.1.src.rpm
File outdated by:  RHSA-2008:0849
    MD5: aed36ce0deb098bda284977fa2f9af04
 
IA-32:
ipsec-tools-0.3.3-6.rhel4.1.i386.rpm
File outdated by:  RHSA-2008:0849
    MD5: af514b3e19ce362c30f42c072751ca7c
 
IA-64:
ipsec-tools-0.3.3-6.rhel4.1.ia64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 2f9fbde3de938d4f1ec7c437fb6c91e7
 
x86_64:
ipsec-tools-0.3.3-6.rhel4.1.x86_64.rpm
File outdated by:  RHSA-2008:0849
    MD5: 7db930f40bb68f77de42997f4b43cff6
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

173841 - CVE-2005-3732 ipsec-tools IKE DoS
181605 - CVE-2005-3732 ipsec-tools IKE DoS


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/