Description
ipsec-tools was updated to fix one security issue and a bug.
This security issue was fixed:
- CVE-2015-4047: racoon/gssapi.c in ipsec-tools allowed remote attackers
to cause a denial of service (NULL pointer dereference and IKE daemon
crash) via a series of crafted UDP requests (bsc#931989).
Due to a packaging error, the racoonf.conf config file was symlinked to
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf
on some processor platforms, edits might have happened only in this
example file.
Before upgrading, please check if /etc/racoon/racoon.conf is a symlink to this example file and backup the content. (bsc#939810)