[ALSA-2023:3095] Moderate: libreswan security and bug fix update
Type:
security
Severity:
moderate
Release date:
2023-05-19
Description:
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). Security Fix(es): * libreswan: remote DoS via crafted TS payload with an incorrect selector length (CVE-2023-23009) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * authby=rsasig fails in FIPS policy (BZ#2187647)
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libreswan-4.9-2.el8_8.2.aarch64.rpm a007118e0695426a82dd1eb5cc3368c2ea78c6e7a1dee304e1295fd70c358ce5
ppc64le libreswan-4.9-2.el8_8.2.ppc64le.rpm 440af2d1d4da8677c8959c0011ab303bb86046cb5276864f7348dce7afb2a9cc
s390x libreswan-4.9-2.el8_8.2.s390x.rpm 44d4e786e0d376d3b24d2bd50f50b55e873a8acb8b195b66a5d29a7209e827f1
x86_64 libreswan-4.9-2.el8_8.2.x86_64.rpm bb000cdbd7ad213c7d99643430c19e9ff6c04b619bb0f88ce9626a64e766dc54
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.