White Box 64 Published by

An updated ipsec-tools package is available for White Box Enterprise Linux 3.0

Security Advisory

Synopsis: Updated ipsec-tools package fixes vulnerabilities in ISAKMP daemon
Advisory ID: [WBSA-2004:165-01]
Issue date: 2004-06-10
Updated on: 2004-06-10
Product: White Box Enterprise Linux 3.0 (i386)
Keywords: SA x509
Cross references:
CVE Names: CAN-2004-0155 CAN-2004-0164 CAN-2004-0403

Note: This one has actually been on the mirrors since May 17-18.

An updated ipsec-tools package that fixes vulnerabilities in racoon (the ISAKMP daemon) is now available.

More information is available in Red Hat, Inc's original advisory available on their site at:


To install this new package on your White Box Enterprise Linux system use the Up2Date Network or Yum.

Note: Be sure to change the default Up2Date or Yum server from the initial location to prevent undue load to the whiteboxlinux.org server, which doesn't have a lot of outbound bandwidth. The config files already have entries for mirror sites commented out.

Up2Date's configuration file is at /etc/sysconfig/rhn/sources

Yum's configuration is in /etc/yum.conf