351 matches found
IPsec-Tools: racoon Denial of service
Background IPsec-Tools is a port of KAME's implementation of the IPsec utilities. It contains a collection of network monitoring tools, including racoon, ping, and ping6. Description Two Denial of Service vulnerabilities have been reported in racoon: The vendor reported a memory leak in...
SuSE 10 Security Update : ipsec-tools (ZYPP Patch Number 5638)
Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it. CVE-2008-3651 / CVE-2008-3652 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
openSUSE 10 Security Update : ipsec-tools (ipsec-tools-5630)
Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it CVE-2008-3651, CVE-2008-3652 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ipsec-tools-5630. The text descripti...
[SECURITY] Fedora 8 Update: ipsec-tools-0.7.1-5.fc8
This is the IPsec-Tools package. You need this package in order to really use the IPsec functionality in the linux-2.5+ kernels. This package builds: - setkey, a program to directly manipulate policies and SAs - racoon, an IKEv1 keying daemon...
[SECURITY] Fedora 9 Update: ipsec-tools-0.7.1-5.fc9
This is the IPsec-Tools package. You need this package in order to really use the IPsec functionality in the linux-2.5+ kernels. This package builds: - setkey, a program to directly manipulate policies and SAs - racoon, an IKEv1 keying daemon...
Fedora 8 : ipsec-tools-0.7.1-5.fc8 (2008-9016)
The update fixes memory leaks potentially leading to DoS CVE-2008-3651 CVE-2008-3652. It also fixes problems with DPD and NAT-T support. This has been in rawhide for a while, with no bad reports. It improves remote-access client connection to Cisco ASA. Note that Tenable Network Security has...
Fedora 9 : ipsec-tools-0.7.1-5.fc9 (2008-9007)
The update fixes memory leaks potentially leading to DoS CVE-2008-3651 CVE-2008-3652. It also fixes problems with DPD and NAT-T support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools)
The remote host is missing updates announced in advisory GLSA 200406-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200503-33 (IPsec-Tools)
The remote host is missing updates announced in advisory GLSA 200503-33. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200512-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200705-09 (ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200705-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools)
The remote host is missing updates announced in advisory GLSA 200406-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200404-05 (ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200404-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200705-09 (ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200705-09. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200503-33 (IPsec-Tools)
The remote host is missing updates announced in advisory GLSA 200503-33. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200512-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200404-05 (ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200404-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : ipsec-tools vulnerabilities (USN-641-1)
It was discovered that there were multiple ways to leak memory during the IKE negotiation when handling certain packets. If a remote attacker sent repeated malicious requests, the 'racoon' key exchange server could allocate large amounts of memory, possibly leading to a denial of service. Note th...
USN-641-1: Racoon vulnerabilities
It was discovered that there were multiple ways to leak memory during the IKE negotiation when handling certain packets. If a remote attacker sent repeated malicious requests, the "racoon" key exchange server could allocate large amounts of memory, possibly leading to a denial of service...
[email protected]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:181 http://www.mandriva.com/security/ Package : ipsec-tools Date : August 28, 2008 Affected: 2007.1, 2008.0, 2008.1, Corporate 4.0, Multi Network Firewall 2.0 Problem Description: Two denial of service...