Описание
ELSA-2023-3095: libreswan security and bug fix update (MODERATE)
[4.9-2.0.1.2]
- Add libreswan-oracle.patch to detect Oracle Linux distro
[4.9-2.2]
- Update libreswan-4.9-2176248-authby-rsasig.patch
[4.9-2.1]
- Resolves: rhbz#2187647 authby=rsasig fails in FIPS policy
[4.9-2]
- Fix CVE-2023-23009: remote DoS via crafted TS payload with an incorrect selector length (rhbz#2186127)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
libreswan
4.9-2.0.1.el8_8.2
Oracle Linux x86_64
libreswan
4.9-2.0.1.el8_8.2
Связанные CVE
Связанные уязвимости
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (as ...
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.