BLAG

BLAG Forums
It is currently Sun Dec 21, 2014 6:53 am

All times are UTC




Post new topic Reply to topic  [ 2 posts ] 
Author Message
PostPosted: Fri Jan 28, 2005 4:17 am 
Offline

Joined: Mon Mar 15, 2004 8:17 pm
Posts: 415
Location: ny
No announcement from Fedora


Top
 Profile  
 
 Post subject: Fedora Announcement
PostPosted: Fri Jan 28, 2005 9:01 pm 
Offline

Joined: Mon Mar 15, 2004 8:17 pm
Posts: 415
Location: ny
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-082
2005-01-28
---------------------------------------------------------------------

Product : Fedora Core 3
Name : openswan
Version : 2.1.5
Release : 2.FC3.1
Summary : Openswan IPsec userland tools
Description :
Openswan is a free implementation of IPSEC & IKE for Linux.

IPsec is Internet Protocol Security and uses strong cryptography to
provide both authentication and encryption services. These services
allow you to build secure tunnels through untrusted networks.
Everything passing through the untrusted net is encrypted by the ipsec
gateway machine and decrypted by the gateway at the other end of the
tunnel. The resulting tunnel is a virtual private network or VPN.

This package contains the daemons and userland tools for setting up
Openswan on a kernel with the 2.6 native IPsec code.

---------------------------------------------------------------------
Update Information:
This erratum fixes the remote exploitation of a stack based buffer
overflow vulnerability in Xelerance Corp.'s Openswan, which could
allow attackers to execute arbitrary code.

The vulnerability specifically exists due to a lack of bounds checking
in the pluto application when Openswan is compiled with XAUTH and PAM
support.

The Common Vulnerabilities and Exposures project has assigned
the name CAN-2005-0162 to this problem.

---------------------------------------------------------------------
* Tue Dec 27 2005 Harald Hoyer <harald@redhat.com> - 2.1.5-2.FC3.1

- fixed possible xauth/PAM buffer overflow. (bug 146287)


---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/f ... updates/3/

08083949eee57eb9b8417729fc160e57 SRPMS/openswan-2.1.5-2.FC3.1.src.rpm
6df7139465807a325eacbe065a35ef67 x86_64/openswan-2.1.5-2.FC3.1.x86_64.rpm
eab7fef76f737dd0ef5c4527656958c0 x86_64/debug/openswan-debuginfo-2.1.5-2.FC3.1.x86_64.rpm
9ee8446d2ba7f7dbca2c5213b30e9393 i386/openswan-2.1.5-2.FC3.1.i386.rpm
ef5fec6a769017a1e726c95129286b9c i386/debug/openswan-debuginfo-2.1.5-2.FC3.1.i386.rpm


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ] 

All times are UTC


Who is online

Users browsing this forum: No registered users and 0 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group