libreswan-4.12-1.el9_3.1.ML.1
エラータID: AXSA:2024-7719:01
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).
Security Fix(es):
* libreswan: Missing PreSharedKey for connection can cause crash (CVE-2024-2357)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2024-2357
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
Update packages.
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
N/A
SRPMS
- libreswan-4.12-1.el9_3.1.ML.1.src.rpm
MD5: cdb99e381d3f5e94d916ad32d73fb601
SHA-256: 76ad20451788e9bdbe256207e29e92a34045ecd6155a23ba3d6900669bbb94ec
Size: 12.54 MB
Asianux Server 9 for x86_64
- libreswan-4.12-1.el9_3.1.ML.1.x86_64.rpm
MD5: 5caa5fa61b70f7eb1dfae735ca746bd3
SHA-256: 68d40200fe31ed25272a680f63374b81ba19e0d7b7be45996cc64bf06e5d2376
Size: 1.34 MB
日本語