Paketname
ipsec-tools
Datum
2009-12-03
Advisory ID
MDVSA-2009:112-1
Betroffene Versionen
2008.0 i586 , 2008.0 x86_64

Problembeschreibung

racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote
attackers to cause a denial of service (crash) via crafted fragmented
packets without a payload, which triggers a NULL pointer dereference
(CVE-2009-1574).

Updated packages are available that brings ipsec-tools to version
0.7.2 for Mandriva Linux 2008.1/2009.0/2009.1 which provides numerous
bugfixes over the previous 0.7.1 version, and also corrects this
issue. ipsec-tools for Mandriva Linux Corporate Server 4 has been
patched to address this issue.

Additionally the flex package required for building ipsec-tools has
been fixed due to ipsec-tools build problems and is also available
with this update.

Update:

Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers

Aktualisierte Pakete

2008.0 i586

 8256debb7fe84394de70499907060de6  2008.0/i586/flex-2.5.33-2.1mdv2008.0.i586.rpm
 c03c0f9fe8f564ea777b82789ac95f41  2008.0/i586/ipsec-tools-0.7.2-0.1mdv2008.0.i586.rpm
 9da2195c693a7fe40f7afb3c5806aaca  2008.0/i586/libipsec0-0.7.2-0.1mdv2008.0.i586.rpm
 29dcc9414a59cba30ce801b9fef416a6  2008.0/i586/libipsec-devel-0.7.2-0.1mdv2008.0.i586.rpm 
 b3ceeee8a3a36388d02426b77a45d862  2008.0/SRPMS/flex-2.5.33-2.1mdv2008.0.src.rpm
 b0cb7993f29eac3d5f170c7cd3cf0cb5  2008.0/SRPMS/ipsec-tools-0.7.2-0.1mdv2008.0.src.rpm

2008.0 x86_64

 36c5d0eb92197c814b90c814d21d3372  2008.0/x86_64/flex-2.5.33-2.1mdv2008.0.x86_64.rpm
 7a976c988badcb9fae93509acfe99aa2  2008.0/x86_64/ipsec-tools-0.7.2-0.1mdv2008.0.x86_64.rpm
 85b8ed6e328b048c13eb503bfee8dcdc  2008.0/x86_64/lib64ipsec0-0.7.2-0.1mdv2008.0.x86_64.rpm
 a22f34f1cfac38c9029eb032e3257285  2008.0/x86_64/lib64ipsec-devel-0.7.2-0.1mdv2008.0.x86_64.rpm 
 b3ceeee8a3a36388d02426b77a45d862  2008.0/SRPMS/flex-2.5.33-2.1mdv2008.0.src.rpm
 b0cb7993f29eac3d5f170c7cd3cf0cb5  2008.0/SRPMS/ipsec-tools-0.7.2-0.1mdv2008.0.src.rpm

Referenzen