libreswan-4.6-3.el9.1

エラータID: AXSA:2023-5325:02

Release date: 
Monday, May 8, 2023 - 01:59
Subject: 
libreswan-4.6-3.el9.1
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).

Security Fix(es):

* libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan (CVE-2023-30570)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-30570
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. libreswan-4.6-3.el9.1.src.rpm
    MD5: 61b21b3d7f50896d75dfd8856ccc3eb2
    SHA-256: 35d2b89a0444d6055d2339208b4908440878658d201fd79dc09727dc49e9b063
    Size: 12.40 MB

Asianux Server 9 for x86_64
  1. libreswan-4.6-3.el9.1.x86_64.rpm
    MD5: 8ebf491c21b526ae9fdd45b04ddf4d28
    SHA-256: 9fc788104e9d8ea0e7e03808dc9de11ae3366f1751b7680db083cb544c619553
    Size: 1.25 MB