Описание
ELSA-2023-7052: libreswan security update (MODERATE)
[4.12-2.0.1]
- Add libreswan-oracle.patch to detect Oracle Linux distro
[4.12-2]
- Resolves: rhbz#2234731 authby=rsasig fails in FIPS policy
[4.12-1]
- Update to 4.12 to fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712
- Resolves: rhbz#2215955
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
libreswan
4.12-2.0.1.el8
Oracle Linux x86_64
libreswan
4.12-2.0.1.el8
Связанные CVE
Связанные уязвимости
An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.
An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.
An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.