[ALSA-2023:7052] Moderate: libreswan security update
Type:
security
Severity:
moderate
Release date:
2023-11-23
Description:
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). Security Fix(es): * libreswan: Invalid IKEv2 REKEY proposal causes restart (CVE-2023-38710) * libreswan: Invalid IKEv1 Quick Mode ID causes restart (CVE-2023-38711) * libreswan: Invalid IKEv1 repeat IKE SA delete causes crash and restart (CVE-2023-38712) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 libreswan-4.12-2.el8.aarch64.rpm 87f0a21a136507cee84031c3ea7eb3b4363b3ceb69068089819b3eb76167517d
ppc64le libreswan-4.12-2.el8.ppc64le.rpm 078b301a1036860eb7a5cd157fd6bfdc018ccd4af3cae424f1dd00bd408ff19a
s390x libreswan-4.12-2.el8.s390x.rpm 55946a1b2261968713656ecb45b642fd4f921495b823020c32c841134e6fee76
x86_64 libreswan-4.12-2.el8.x86_64.rpm a5b3a221db302a294caeb87bae0e3e00e15c90762ac87d75e1f6734657c78451
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.