Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2024-4050

Опубликовано: 24 июн. 2024
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2024-4050: libreswan security update (MODERATE)

[4.12-2.0.1.1]

  • Add libreswan-oracle.patch to detect Oracle Linux distro

[4.12-2.1]

  • Fix CVE-2024-3652 (RHEL-40102)

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

libreswan

4.12-2.0.1.el9_4.1

Oracle Linux x86_64

libreswan

4.12-2.0.1.el9_4.1

Связанные CVE

CVE-2024-3652

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-3652

CVSS3: 6.5
ubuntu
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

redhat логотип

CVE-2024-3652

CVSS3: 6.5
redhat
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

nvd логотип

CVE-2024-3652

CVSS3: 6.5
nvd
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

msrc логотип

CVE-2024-3652

CVSS3: 6.5
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2024-3652

CVSS3: 6.5
debian
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to re ...