You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa ipsec-tools

Sigurnosni nedostatak programskog paketa ipsec-tools

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3482-1
November 16, 2017

ipsec-tools vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 12.04 ESM

Summary:

ipsec-tools could be made to crash if it received specially crafted
network traffic.

Software Description:
– ipsec-tools: IPsec tools for Linux

Details:

It was discovered that racoon, the ipsec-tools IKE daemon, incorrectly
handled certain ISAKMP fragments. A remote attacker could use this
issue to cause racoon to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  ipsec-tools                     1:0.8.0-9ubuntu1.2
  racoon                          1:0.8.0-9ubuntu1.2

In general, a standard system update will make all the necessary
changes.

References:
  https://www.ubuntu.com/usn/usn-3482-1
  CVE-2016-10396
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=1Mcb
—–END PGP SIGNATURE—–

AutorDanijel Kozinovic
Cert idNCERT-REF-2017-11-0104-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa firefox

Otkriveni su sigurnosni nedostaci u programskom paketu firefox za operacijski sustav Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja,...

Close