Scientific Linux Security Update : openswan on SL5.x i386/x86_64
Medium Nessus Plugin ID 60558
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionGerd v. Egidy discovered a flaw in the Dead Peer Detection (DPD) in Openswan's pluto IKE daemon. A remote attacker could use a malicious DPD packet to crash the pluto daemon. (CVE-2009-0790)
It was discovered that Openswan's livetest script created temporary files in an insecure manner. A local attacker could use this flaw to overwritearbitrary files owned by the user running the script.
After installing this update, the ipsec service will be restarted automatically.
SolutionUpdate the affected openswan and / or openswan-doc packages.