libreswan-4.12-2.el8_9.2.ML.1
エラータID: AXSA:2024-7724:02
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).
Security Fix(es):
* libreswan: Missing PreSharedKey for connection can cause crash (CVE-2024-2357)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2024-2357
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
Update packages.
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
N/A
SRPMS
- libreswan-4.12-2.el8_9.2.ML.1.src.rpm
MD5: 297625f748a4c57fca88b874b0dcb6f3
SHA-256: a3c81181d9b3544360f997d4cffff2682a36f50f806e2792f0f12205babae316
Size: 12.55 MB
Asianux Server 8 for x86_64
- libreswan-4.12-2.el8_9.2.ML.1.x86_64.rpm
MD5: f1b09d147174352d2a2605d1b21a3eb9
SHA-256: d212c0acde1e0b53b4b6a53a28339df3628c27f8f8052641c203988ad03fb4e2
Size: 1.38 MB
日本語