Apple reported a denial of service flaw in the ipsec-tools racoon. It is possible for a remote attacker to invalidate an ipsec tunnel between two machines. According to upstream: Anybody who can: - guess that A and B have established an IPSec tunnel - guess some basic informations about phase1 (or who is ready to do some quick bruteforce....) - send packed to A which appears to come from B Can invalidate that tunnel at any time.
Created attachment 151768 [details] Proposed upstream patch
This issue is now public, removing embargo http://ipsec-tools.sourceforge.net/ 2007-04-06 IPsec-tools 0.6.7 released, and fixes a DoS in informationnal messages handling (CVE-2007-1841). Download here
n-v-r is ipsec-tools-0.6.5-8.el5 http://brewweb.devel.redhat.com/brew/buildinfo?buildID=60393
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2007-0342.html