libreswan-4.5-1.el8.1

エラータID: AXSA:2023-5324:01

Release date: 
Monday, May 8, 2023 - 01:46
Subject: 
libreswan-4.5-1.el8.1
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).

Security Fix(es):

* libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan (CVE-2023-30570)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-30570
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Solution: 

Update packages.

CVEs: 
CVE-2023-30570
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Additional Info: 

N/A

Download: 

SRPMS
  1. libreswan-4.5-1.el8.1.src.rpm
    MD5: f938d09a7adab78fca4ca4364bc15869
    SHA-256: 97ccd04d34ef2e544b120de51a05669f98aa1b235967b21fa682d1b142ea44f1
    Size: 12.37 MB

Asianux Server 8 for x86_64
  1. libreswan-4.5-1.el8.1.x86_64.rpm
    MD5: 0961ff809abdc4625f45e614c95fda1f
    SHA-256: 9439d771ce526eaade4b5736a3c194e8c54f169cc12c27553279b0eae273f0d4
    Size: 1.28 MB