Updated ipsec-tools packages that fix a bug in racoon are now available.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
The ipsec-tools package is used in conjunction with the IPsec functionality
in the linux kernel and includes racoon, an IKEv1 keying daemon.
A denial of service flaw was found in the ipsec-tools racoon daemon. If a
victim's machine has racoon configured in a non-recommended insecure
manner, it is possible for a remote attacker to crash the racoon daemon.
Users of ipsec-tools should upgrade to these updated packages, which contain
backported patches, and are not vulnerable to these issues.