Xelerance Corporation Openswan XAUTH/PAM Remote Buffer Overflow Vulnerability

Xelerance Corporation Openswan XAUTH/PAM Remote Buffer Overflow Vulnerability

Solution:
The vendor has released upgrades dealing with this issue.

Fedora advisory FEDORA-2005-082 is available to address this issue in Fedora Core 3. Please see the referenced advisory for more information.

Openswan Openswan 1.0.4

Openswan Openswan 1.0.9
http://www.openswan.org/download/openswan-1.0.9.tar.gz

Openswan Openswan 1.0.5

Openswan Openswan 1.0.9
http://www.openswan.org/download/openswan-1.0.9.tar.gz

Openswan Openswan 1.0.6

Openswan Openswan 1.0.9
http://www.openswan.org/download/openswan-1.0.9.tar.gz

Openswan Openswan 1.0.7

Openswan Openswan 1.0.9
http://www.openswan.org/download/openswan-1.0.9.tar.gz

Openswan Openswan 1.0.8

Openswan Openswan 1.0.9
http://www.openswan.org/download/openswan-1.0.9.tar.gz

Openswan Openswan 2.1.1

Openswan Openswan 2.3.0
http://www.openswan.org/download/openswan-2.3.0.tar.gz

Openswan Openswan 2.1.2

Openswan Openswan 2.3.0
http://www.openswan.org/download/openswan-2.3.0.tar.gz

Openswan Openswan 2.1.4

Openswan Openswan 2.3.0
http://www.openswan.org/download/openswan-2.3.0.tar.gz

Openswan Openswan 2.1.5

Fedora openswan-2.1.5-2.FC3.1.i386.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora openswan-2.1.5-2.FC3.1.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora openswan-debuginfo-2.1.5-2.FC3.1.i386.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora openswan-debuginfo-2.1.5-2.FC3.1.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/