| Name | CVE-2004-0164 |
| Description | KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| ipsec-tools (PTS) | jessie, jessie (lts) | 1:0.8.2+20140711-2+deb8u1 | fixed |
| stretch | 1:0.8.2+20140711-8+deb9u1 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| ipsec-tools | source | (unstable) | 0.3.3-1 | | | |
Notes
not mentioned in the changelog, so I don't know which version exactly fixes
the problem, but the patch that fixes the bug is applied:
http://marc.info/?l=bugtraq&m=107411758202662&w=2