Описание
ELSA-2024-2565: libreswan security update (MODERATE)
[4.12-2.0.1]
- Add libreswan-oracle.patch to detect Oracle Linux distro
[4.12-2]
- Fix CVE-2024-2357 (RHEL-32761)
- x509: unpack IPv6 general names based on length (RHEL-32718)
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
libreswan
4.12-2.0.1.el9_4
Oracle Linux x86_64
libreswan
4.12-2.0.1.el9_4
Связанные CVE
Связанные уязвимости
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
The Libreswan Project was notified of an issue causing libreswan to re ...
