Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2024-4376

Опубликовано: 08 июл. 2024
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2024-4376: libreswan security update (MODERATE)

[4.12-2.0.1.4]

  • Add libreswan-oracle.patch to detect Oracle Linux distro

[4.12-2.4]

  • Fix CVE-2024-3652 (RHEL-32482)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

libreswan

4.12-2.0.1.el8_10.4

Oracle Linux x86_64

libreswan

4.12-2.0.1.el8_10.4

Связанные CVE

CVE-2024-3652

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-3652

CVSS3: 6.5
ubuntu
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

redhat логотип

CVE-2024-3652

CVSS3: 6.5
redhat
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

nvd логотип

CVE-2024-3652

CVSS3: 6.5
nvd
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

msrc логотип

CVE-2024-3652

CVSS3: 6.5
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2024-3652

CVSS3: 6.5
debian
около 1 года назад

The Libreswan Project was notified of an issue causing libreswan to re ...