[SECURITY] Fedora Core 2 Update: ipsec-tools-0.2.5-4

Nalin Dahyabhai nalin at redhat.com
Mon Jun 28 17:28:09 UTC 2004 

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-197
2004-06-28
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : ipsec-tools
Version     : 0.2.5                      
Release     : 4                  
Summary     : Tools for configuring and using IPSEC
Description :
This is the IPsec-Tools package.  You need this package in order to
really use the IPsec functionality in the linux-2.5+ kernels.  This
package builds:

        - libipsec, a PFKeyV2 library
	- setkey, a program to directly manipulate policies and SAs
	- racoon, an IKEv1 keying daemon

---------------------------------------------------------------------
Update Information:

When configured to use X.509 certificates to authenticate remote
hosts, ipsec-tools versions 0.3.3 and earlier will attempt to verify
that host certificate, but will not abort the key exchange if the
verification fails.

Users of ipsec-tools should upgrade to this updated package which
contains a backported security patch and is not vulnerable to this
issue.
---------------------------------------------------------------------

* Fri Jun 25 2004 Nalin Dahyabhai <nalin at redhat.com> 0.2.5-4

- backport certificate validation fixes from 0.3.3 (#126568)

* Tue Jun 15 2004 Elliot Lee <sopwith at redhat.com>

- rebuilt

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

a37bb0893daee1ebecfb9ec03d7df542  SRPMS/ipsec-tools-0.2.5-4.src.rpm
2d2773ae7faee29982e87d26aea76803  x86_64/ipsec-tools-0.2.5-4.x86_64.rpm
79bcd6d5050b207492080e70fe7c04c6  x86_64/debug/ipsec-tools-debuginfo-0.2.5-4.x86_64.rpm
e9c0a5fef2720246a1751f6e88befd77  i386/ipsec-tools-0.2.5-4.i386.rpm
6abfadc474494cf9393364b78488b321  i386/debug/ipsec-tools-debuginfo-0.2.5-4.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
---------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-announce-list/attachments/20040628/962d6aad/attachment.sig>

More information about the fedora-announce-list mailing list