diff options
Diffstat (limited to 'net-firewall/ipsec-tools/files')
| -rw-r--r-- | net-firewall/ipsec-tools/files/digest-ipsec-tools-0.4-r2 | 1 | ||||
| -rw-r--r-- | net-firewall/ipsec-tools/files/ipsec-tools-0.4-dos-fix.diff | 29 |
2 files changed, 30 insertions, 0 deletions
diff --git a/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.4-r2 b/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.4-r2 new file mode 100644 index 000000000000..0855393d1461 --- /dev/null +++ b/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.4-r2 @@ -0,0 +1 @@ +MD5 dceea3b72328a580cf156d74cbee6f80 ipsec-tools-0.4.tar.gz 915420 diff --git a/net-firewall/ipsec-tools/files/ipsec-tools-0.4-dos-fix.diff b/net-firewall/ipsec-tools/files/ipsec-tools-0.4-dos-fix.diff new file mode 100644 index 000000000000..a7b44c268897 --- /dev/null +++ b/net-firewall/ipsec-tools/files/ipsec-tools-0.4-dos-fix.diff @@ -0,0 +1,29 @@ +diff -aur ipsec-tools-0.4-orig/src/racoon/isakmp_agg.c ipsec-tools-0.4/src/racoon/isakmp_agg.c +--- ipsec-tools-0.4-orig/src/racoon/isakmp_agg.c 2004-03-23 04:50:27.000000000 -0800 ++++ ipsec-tools-0.4/src/racoon/isakmp_agg.c 2005-12-03 11:25:10.000000000 -0800 +@@ -400,7 +400,11 @@ + } + + /* payload existency check */ +- /* XXX to be checked each authentication method. */ ++ if (iph1->dhpub_p == NULL || iph1->nonce_p == NULL) { ++ plog(LLV_ERROR, LOCATION, iph1->remote, ++ "few isakmp message received.\n"); ++ goto end; ++ } + + /* verify identifier */ + if (ipsecdoi_checkid1(iph1) != 0) { +@@ -755,7 +759,11 @@ + } + + /* payload existency check */ +- /* XXX to be checked each authentication method. */ ++ if (iph1->dhpub_p == NULL || iph1->nonce_p == NULL) { ++ plog(LLV_ERROR, LOCATION, iph1->remote, ++ "few isakmp message received.\n"); ++ goto end; ++ } + + /* verify identifier */ + if (ipsecdoi_checkid1(iph1) != 0) { |