|
Family: Fedora Local Security Checks --> Category: infos
Fedora Core 2 2004-197: ipsec-tools Vulnerability Scan
Vulnerability Scan Summary Check for the version of the ipsec-tools package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2004-197 (ipsec-tools).
This is the IPsec-Tools package. You need this package in order to
really use the IPsec functionality in the linux-2.5+ kernels. This
package builds:
- libipsec, a PFKeyV2 library
- setkey, a program to directly manipulate policies and SAs
- racoon, an IKEv1 keying daemon
Update Information:
When configured to use X.509 certificates to authenticate remote
hosts, ipsec-tools versions 0.3.3 and earlier will attempt to verify
that host certificate, but will not abort the key exchange if the
verification fails.
Users of ipsec-tools should upgrade to this updated package which
contains a backported security patch and is not vulnerable to this
issue.
Solution : http://www.fedoranews.org/updates/FEDORA-2004-197.shtml
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|