Your message dated Tue, 15 Nov 2005 08:17:10 -0800
with message-id <[EMAIL PROTECTED]>
and subject line Bug#339082: fixed in openswan 1:2.4.3-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 14 Nov 2005 20:58:38 +0000
>From [EMAIL PROTECTED] Mon Nov 14 12:58:38 2005
Return-path: <[EMAIL PROTECTED]>
Received: from inutil.org ([193.22.164.111]
helo=vserver151.vserver151.serverflex.de)
by spohr.debian.org with esmtp (Exim 4.50)
id 1EblPR-0001vF-Sz
for [EMAIL PROTECTED]; Mon, 14 Nov 2005 12:58:38 -0800
Received: from dslb-082-083-221-179.pools.arcor-ip.net ([82.83.221.179]
helo=localhost.localdomain)
by vserver151.vserver151.serverflex.de with esmtpsa
(TLS-1.0:RSA_AES_256_CBC_SHA:32)
(Exim 4.50)
id 1EblPQ-00053A-LU
for [EMAIL PROTECTED]; Mon, 14 Nov 2005 21:58:36 +0100
Received: from jmm by localhost.localdomain with local (Exim 4.54)
id 1EblPF-0001dk-NO; Mon, 14 Nov 2005 21:58:25 +0100
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Moritz Muehlenhoff <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: kernel-patch-openswan: ISAKMP implementation problems / DoS
X-Mailer: reportbug 3.17
Date: Mon, 14 Nov 2005 21:58:25 +0100
X-Debbugs-Cc: Debian Security Team <[EMAIL PROTECTED]>
Message-Id: <[EMAIL PROTECTED]>
X-SA-Exim-Connect-IP: 82.83.221.179
X-SA-Exim-Mail-From: [EMAIL PROTECTED]
X-SA-Exim-Scanned: No (on vserver151.vserver151.serverflex.de); SAEximRunCond
expanded to false
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-10.5 required=4.0 tests=BAYES_00,HAS_PACKAGE,
RCVD_IN_SORBS,X_DEBBUGS_CC autolearn=ham
version=2.60-bugs.debian.org_2005_01_02
Package: kernel-patch-openswan
Version: 1:2.4.0-3
Severity: grave
Tags: security
Justification: user security hole
The Oulu University Secure Programming Group has discovered several
problems in ISAKMP implementations. openswan is among the affected
products. Please see
http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html for more
information from NISCC and http://www.openswan.org/niscc2/ for the
openswan specific information.
The problems have been addressed in 2.4.2.
Cheers,
Moritz
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.14-1-686
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)
---------------------------------------
Received: (at 339082-close) by bugs.debian.org; 15 Nov 2005 16:22:51 +0000
>From [EMAIL PROTECTED] Tue Nov 15 08:22:51 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 4.50)
id 1Ec3Uc-00040I-Dr; Tue, 15 Nov 2005 08:17:10 -0800
From: Rene Mayrhofer <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#339082: fixed in openswan 1:2.4.3-1
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Tue, 15 Nov 2005 08:17:10 -0800
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Source: openswan
Source-Version: 1:2.4.3-1
We believe that the bug you reported is fixed in the latest version of
openswan, which is due to be installed in the Debian FTP archive:
kernel-patch-openswan_2.4.3-1_all.deb
to pool/main/o/openswan/kernel-patch-openswan_2.4.3-1_all.deb
openswan-modules-source_2.4.3-1_all.deb
to pool/main/o/openswan/openswan-modules-source_2.4.3-1_all.deb
openswan_2.4.3-1.diff.gz
to pool/main/o/openswan/openswan_2.4.3-1.diff.gz
openswan_2.4.3-1.dsc
to pool/main/o/openswan/openswan_2.4.3-1.dsc
openswan_2.4.3-1_i386.deb
to pool/main/o/openswan/openswan_2.4.3-1_i386.deb
openswan_2.4.3.orig.tar.gz
to pool/main/o/openswan/openswan_2.4.3.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Rene Mayrhofer <[EMAIL PROTECTED]> (supplier of updated openswan package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 15 Nov 2005 15:49:44 +0000
Source: openswan
Binary: openswan-modules-source kernel-patch-openswan openswan
Architecture: source all i386
Version: 1:2.4.3-1
Distribution: unstable
Urgency: high
Maintainer: Rene Mayrhofer <[EMAIL PROTECTED]>
Changed-By: Rene Mayrhofer <[EMAIL PROTECTED]>
Description:
kernel-patch-openswan - IPSEC kernel support for Openswan
openswan - IPSEC utilities for Openswan
openswan-modules-source - IPSEC kernel modules source for Openswan
Closes: 339082
Changes:
openswan (1:2.4.3-1) unstable; urgency=high
.
Reasoning for urgency high: DoS security issues.
* New upstream version.
Closes: Bug#339082: kernel-patch-openswan: ISAKMP implementation
problems / DoS
Files:
35ed8ef7ec166355953bf0c1c0e95c94 785 net optional openswan_2.4.3-1.dsc
d721c1d11296c3e739fffc9c3dc187f5 3585768 net optional
openswan_2.4.3.orig.tar.gz
79647d79eff74cf09bfb1649fe9d00a0 2124 net optional openswan_2.4.3-1.diff.gz
6ac491ec7c8197c6de36f4119340f864 620288 net optional
openswan-modules-source_2.4.3-1_all.deb
ef0cdd19940da519ba691c0263df418e 587882 net optional
kernel-patch-openswan_2.4.3-1_all.deb
3aa262f1a4d7ad4c223ee1a49d0f321d 1668402 net optional openswan_2.4.3-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDegdYq7SPDcPCS94RAlr2AJ0Y+c2/uUncbu/iv5sg/yuupqLeEQCeIeDL
RvgApq52dcKEdP/6KfCFFFk=
=SQqe
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
