Quote:
Originally Posted by Durga@84
same racoon package present in Ubuntu repository. Racoon ipsec package successfully installed in Ubuntu.
Is this security problem only present in centos?
|
The ubuntu package IS derived from the same 2014 source.
Code:
Provided by: racoon_0.8.2+20140711-10build1_amd64
NAME
racoon — IKE (ISAKMP/Oakley) key management daemon
so either they fixed the vulnerability themselves OR they never bothered, are just supplying the same 2014 code - which HAS been abandoned by the original developer.
I don't know, do not run either of those distributions myself, all info I have given is found through searching the web.
But I, myself, would never run security software that is THAT old and not supported anymore (but luckily in Slackware I do not need too).
PS: even in Debian the racoon and ipsec tools packages are from 2015, so haven't been updated in a long time.