libreswan-4.9-2.el9

エラータID: AXSA:2023-5981:06

Release date: 
Monday, June 12, 2023 - 09:01
Subject: 
libreswan-4.9-2.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet
Protocol Security and uses strong cryptography to provide both authentication
and encryption services. These services allow you to build secure tunnels
through untrusted networks such as virtual private network (VPN).

Security Fix(es):

libreswan: remote DoS via crafted TS payload with an incorrect selector
length (CVE-2023-23009)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.

CVE(s):
CVE-2023-23009
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.

Solution: 

Update packages.

CVEs: 
CVE-2023-23009
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Additional Info: 

N/A

Download: 

SRPMS
  1. libreswan-4.9-2.el9.src.rpm
    MD5: 53b17d5be2a4dce055fddcfe38b3fb9d
    SHA-256: 64358d896226153438876c1b8671b9bea4152cab3b98c18da2ec66479b96eda2
    Size: 12.52 MB

Asianux Server 9 for x86_64
  1. libreswan-4.9-2.el9.x86_64.rpm
    MD5: 72404db43e1b5a2ffb2e149fec06e2a4
    SHA-256: 6aa2d40448e4628185044849706714acad0ada7e8c2a3b8d01fc9394d066c607
    Size: 1.32 MB