[ALSA-2023:2122] Important: libreswan security update
Type:
security
Severity:
important
Release date:
2023-05-05
Description:
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). Security Fix(es): * libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan (CVE-2023-30570) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libreswan-4.5-1.el8_7.1.aarch64.rpm 5da0212cb0b8c9f267f47f1d84b0cc2e0e80cb11f644deb1ff062d71ff2e9c6d
ppc64le libreswan-4.5-1.el8_7.1.ppc64le.rpm 5f5009f54e32ec9a2a3b7b8ed0e6ee35adca1b8946a0ea0bd4b5582eb90a23e6
s390x libreswan-4.5-1.el8_7.1.s390x.rpm 8b7b6586bd2f0c65b7f0ce631d428b8671e261e93516bc78ae71f6d5a6ab63a6
x86_64 libreswan-4.5-1.el8_7.1.x86_64.rpm d66a00bfa3897ea79712e280bc20acd7e5a31d8c150e1bb0ac58be05b0f54ef4
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.