Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2006:0267
HistoryApr 25, 2006 - 3:22 p.m.

ipsec security update

2006-04-2515:22:42
CentOS Project
lists.centos.org
39

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.179 Low

EPSS

Percentile

96.2%

JSON

CentOS Errata and Security Advisory CESA-2006:0267

The ipsec-tools package is used in conjunction with the IPsec functionality
in the linux kernel and includes racoon, an IKEv1 keying daemon.

A denial of service flaw was found in the ipsec-tools racoon daemon. If a
victim’s machine has racoon configured in a non-recommended insecure
manner, it is possible for a remote attacker to crash the racoon daemon.
(CVE-2005-3732)

Users of ipsec-tools should upgrade to these updated packages, which contain
backported patches, and are not vulnerable to these issues.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-April/075002.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075003.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075006.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075007.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075008.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075009.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075010.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075012.html
https://lists.centos.org/pipermail/centos-announce/2006-April/075013.html

Affected packages:
ipsec-tools

Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0267

OSVersionArchitecturePackageVersionFilename
CentOS3i386ipsec-tools< 0.2.5-0.7.rhel3.3ipsec-tools-0.2.5-0.7.rhel3.3.i386.rpm
CentOS3x86_64ipsec-tools< 0.2.5-0.7.rhel3.3ipsec-tools-0.2.5-0.7.rhel3.3.x86_64.rpm
CentOS4ia64ipsec-tools< 0.3.3-6.rhel4.1ipsec-tools-0.3.3-6.rhel4.1.ia64.rpm
CentOS4alphaipsec-tools< 0.3.3-6.rhel4.1ipsec-tools-0.3.3-6.rhel4.1.alpha.rpm
CentOS4s390ipsec-tools< 0.3.3-6.rhel4.1ipsec-tools-0.3.3-6.rhel4.1.s390.rpm
CentOS4s390xipsec-tools< 0.3.3-6.rhel4.1ipsec-tools-0.3.3-6.rhel4.1.s390x.rpm
CentOS3ia64ipsec-tools< 0.2.5-0.7.rhel3.3ipsec-tools-0.2.5-0.7.rhel3.3.ia64.rpm
CentOS3s390ipsec-tools< 0.2.5-0.7.rhel3.3ipsec-tools-0.2.5-0.7.rhel3.3.s390.rpm
CentOS3s390xipsec-tools< 0.2.5-0.7.rhel3.3ipsec-tools-0.2.5-0.7.rhel3.3.s390x.rpm
CentOS4i386ipsec-tools< 0.3.3-6.rhel4.1ipsec-tools-0.3.3-6.rhel4.1.i386.rpm
Rows per page:
1-10 of 111

Related

cve 1
ubuntu 1
openvas 6
debiancve 1
ubuntucve 1
redhat 1
debian 2
cvelist 1
nessus 7
osv 1
nvd 1
suse 1
gentoo 1
cisco 1
cve
cve
CVE-2005-3732
2005-11-21 22:03:00
ubuntu
ubuntu
racoon vulnerability
2005-12-01 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-965-1)
2008-01-17 00:00:00
SLES9: Security update for ipsec-tools
2009-10-10 00:00:00
Debian Security Advisory DSA 965-1 (ipsec-tools)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2005-3732
2005-11-21 22:03:00
ubuntucve
ubuntucve
CVE-2005-3732
2005-11-21 00:00:00
redhat
redhat
(RHSA-2006:0267) ipsec-tools security update
2006-04-25 00:00:00
debian
debian
[SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service
2006-02-06 07:48:10
[SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service
2006-02-06 07:48:10
cvelist
cvelist
CVE-2005-3732
2005-11-21 22:00:00
nessus
nessus
Ubuntu 4.10 / 5.04 / 5.10 : ipsec-tools vulnerability (USN-221-1)
2006-01-21 00:00:00
SUSE-SA:2005:070: ipsec-tools,freeswan,openswan
2005-12-30 00:00:00
GLSA-200512-04 : Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation
2005-12-15 00:00:00
osv
osv
ipsec-tools - null dereference
2006-02-06 00:00:00
nvd
nvd
CVE-2005-3732
2005-11-21 22:03:00
suse
suse
remote denial of service in ipsec-tools,freeswan,openswan
2005-12-20 10:26:11
gentoo
gentoo
Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation
2005-12-12 00:00:00
cisco
cisco
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
2005-11-14 11:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.179 Low

EPSS

Percentile

96.2%

JSON
Related for CESA-2006:0267
cve1ubuntu1openvas6debiancve1ubuntucve1redhat1debian2cvelist1nessus7osv1nvd1suse1gentoo1cisco1