|
Family: Debian Local Security Checks --> Category: infos
[DSA201] DSA-201-1 freeswan Vulnerability Scan
Vulnerability Scan Summary DSA-201-1 freeswan
Detailed Explanation for this Vulnerability Test
Bindview discovered a problem in several IPSEC implementations that do
not properly handle certain very short packets. IPSEC is a set of
security extensions to IP which provide authentication and encryption.
Free/SWan in Debian is affected by this and is said to cause a kernel
panic.
This problem has been fixed in version 1.96-1.4 for the current stable
distribution (woody) and in version 1.99-1 for the unstable
distribution (sid). The old stable distribution (potato) does not
contain Free/SWan packages.
We recommend that you upgrade your freeswan package.
Solution : http://www.debian.org/security/2002/dsa-201
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|