libreswan-4.12-2.el8_10.4
エラータID: AXSA:2024-8551:06
Release date:
Wednesday, July 10, 2024 - 14:53
Subject:
libreswan-4.12-2.el8_10.4
Affected Channels:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet
Protocol Security and uses strong cryptography to provide both authentication
and encryption services. These services allow you to build secure tunnels
through untrusted networks such as virtual private network (VPN).
Security Fix(es):
libreswan: IKEv1 default AH/ESP responder can crash and restart
(CVE-2024-3652)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
CVE(s):
CVE-2024-3652
Solution:
Update packages.
CVEs:
CVE-2024-3652
The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.
The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.
Additional Info:
N/A
Download:
SRPMS
- libreswan-4.12-2.el8_10.4.src.rpm
MD5: 42114333c3a99b4405fcc63f07554d27
SHA-256: 4071f252104c92dd22f893c5d0347b05f402a259cdbcb0acf2d60b68c463002f
Size: 12.55 MB
Asianux Server 8 for x86_64
- libreswan-4.12-2.el8_10.4.x86_64.rpm
MD5: 378336b20a17266f8c318201bebc074a
SHA-256: 7aa8616ad66feaa5a09f7960d0d4ec8ccf6e0a85564d3ee964da2b1802caaea9
Size: 1.38 MB
日本語