Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200512-04
HistoryDec 12, 2005 - 12:00 a.m.

Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation

2005-12-1200:00:00
Gentoo Foundation
security.gentoo.org
13

0.179 Low

EPSS

Percentile

96.1%

JSON

Background

Openswan is an implementation of IPsec for Linux. IPsec-Tools is a port of KAME’s implementation of the IPsec utilities, including racoon, an Internet Key Exchange daemon. Internet Key Exchange version 1 (IKEv1), a derivate of ISAKMP, is an important part of IPsec. IPsec is widely used to secure exchange of packets at the IP layer and mostly used to implement Virtual Private Networks (VPNs).

Description

The Oulu University Secure Programming Group (OUSPG) discovered that various ISAKMP implementations, including Openswan and racoon (included in the IPsec-Tools package), behave in an anomalous way when they receive and handle ISAKMP Phase 1 packets with invalid or abnormal contents.

Impact

A remote attacker could craft specific packets that would result in a Denial of Service attack, if Openswan and racoon are used in specific, weak configurations.

Workaround

There is no known workaround at this time.

Resolution

All Openswan users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-misc/openswan-2.4.4"

All IPsec-Tools users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose net-firewall/ipsec-tools
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-misc/openswan< 2.4.4UNKNOWN
Gentooanyallnet-firewall/ipsec-tools< 0.6.3UNKNOWN

Related

nessus 10
suse 1
openvas 8
ubuntucve 2
cvelist 2
cve 2
ubuntu 1
debiancve 1
osv 1
centos 1
debian 2
redhat 1
cisco 1
nessus
nessus
SUSE-SA:2005:070: ipsec-tools,freeswan,openswan
2005-12-30 00:00:00
GLSA-200512-04 : Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation
2005-12-15 00:00:00
Fedora Core 3 : openswan-2.4.4-0.FC3.1 (2005-1092)
2005-11-22 00:00:00
suse
suse
remote denial of service in ipsec-tools,freeswan,openswan
2005-12-20 10:26:11
openvas
openvas
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
2008-09-24 00:00:00
SLES9: Security update for freeswan
2009-10-10 00:00:00
ubuntucve
ubuntucve
CVE-2005-3671
2005-11-18 00:00:00
CVE-2005-3732
2005-11-21 00:00:00
cvelist
cvelist
CVE-2005-3671
2005-11-18 21:00:00
CVE-2005-3732
2005-11-21 22:00:00
cve
cve
CVE-2005-3671
2005-11-18 21:03:00
CVE-2005-3732
2005-11-21 22:03:00
ubuntu
ubuntu
racoon vulnerability
2005-12-01 00:00:00
debiancve
debiancve
CVE-2005-3732
2005-11-21 22:03:00
osv
osv
ipsec-tools - null dereference
2006-02-06 00:00:00
centos
centos
ipsec security update
2006-04-25 15:22:42
debian
debian
[SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service
2006-02-06 07:48:10
[SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service
2006-02-06 00:00:00
redhat
redhat
(RHSA-2006:0267) ipsec-tools security update
2006-04-25 00:00:00
cisco
cisco
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
2005-11-14 11:00:00

0.179 Low

EPSS

Percentile

96.1%

JSON
Related for GLSA-200512-04
nessus10suse1openvas8ubuntucve2cvelist2cve2ubuntu1debiancve1osv1centos1debian2redhat1cisco1