Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 85307

Summary: net-firewall/ipsec-tools racoon ISAKMP Headers DOS Vulnerability
Product: Gentoo Security Reporter: petre rodan (RETIRED) <kaiowas>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
URL: http://www.k-otik.com/english/advisories/2005/0264
Whiteboard:
Package list:
Runtime testing required: ---

Description petre rodan (RETIRED) gentoo-dev 2005-03-14 23:43:48 UTC 
ipsec-tools is based on this KAME implementation, so I'm not sure if this bug has been inherited or not :/
seeing the redhat response (see link), it might be vulnerable.

K-OTik Security Advisory : KOTIK/ADV-2005-0264
CVE Reference : CAN-2005-0398
Rated as : Moderate 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-03-15

 * Technical Description *

A new vulnerability was identified in KAME Racoon, which may be exploited by attackers to conduct Denial of Service attacks. The flaw occurs when handling specially crafted ISAKMP Packet Headers, which may be exploited to crash the application.

 * Affected Products *

KAME Racoon version 20050307 and prior

 * Solution *

ftp://ftp.kame.net/pub/mail-list/snap-users/8973

 * References *

http://www.k-otik.com/english/advisories/2005/0264
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=109966&action=view

 * Credits *

Vulnerability reported by Sebastian Krahmer
Comment 1 petre rodan (RETIRED) gentoo-dev 2005-03-15 00:04:42 UTC 
actual bug on redhat bugzilla:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=145531
Comment 2 Thierry Carrez (RETIRED) gentoo-dev 2005-03-15 01:04:01 UTC 

*** This bug has been marked as a duplicate of 84479 ***