CVE-2004-0164

NameCVE-2004-0164
DescriptionKAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium (attack range: remote)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ipsec-tools (PTS)jessie (security), jessie1:0.8.2+20140711-2+deb8u1fixed
stretch1:0.8.2+20140711-8+deb9u1fixed
buster, sid1:0.8.2+20140711-12fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ipsec-toolssource(unstable)0.3.3-1medium

Notes

not mentioned in the changelog, so I don't know which version exactly fixes
the problem, but the patch that fixes the bug is applied:
http://marc.info/?l=bugtraq&m=107411758202662&w=2

Search for package or bug name: Reporting problems