[33107] in bugtraq
Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon
daemon@ATHENA.MIT.EDU (itojun@kame.net)
Fri Jan 16 16:18:43 2004
To: thomas@thinknerd.org
Cc: bugtraq@securityfocus.com
In-Reply-To: Your message of "Wed, 14 Jan 2004 18:26:26 +0900 (JST)"
<20040114092626.4D3E1A4@coconut.itojun.org>
Mime-Version: 1.0
From: itojun@kame.net
Content-Type: Text/Plain; charset=us-ascii
Message-Id: <20040116031149.0DA4AAA@coconut.itojun.org>
Date: Fri, 16 Jan 2004 12:11:49 +0900 (JST)
> > 0 Preface
> >
> > Now that most bugs in isakmpd that allowed for unauthorized SA
> > deletion are "fixed", it's time to release some information on racoon.
> >
> > By the way: About 5 months ago I tried to contact the KAME developers.
> sorry that we did not take necessary actions that time. the attached
> patch should remedy the problem (credit: IIJ SEIL team).
> kame as well as netbsd repository are updated, and vendors are informed.
the patch i've attached yesterday had endian problem (does not work on
little-endian machine). if you are using the code, please pull the
latest code from KAME anoncvs or ftp://ftp.kame.net/pub/kame/misc.
sorry about the mess.
itojun
