1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5048-1] libreswan security update

    From Salvatore Bonaccorso@21:1/5 to All on Sat Jan 15 20:50:01 2022
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5048-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso January 15, 2022 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : libreswan
    CVE ID : CVE-2022-23094

    It was discovered that the libreswan IPsec implementation could be
    forced into a crash/restart via a malformed IKEv1 packet, resulting in
    denial of service.

    For the stable distribution (bullseye), this problem has been fixed in
    version 4.3-1+deb11u1.

    We recommend that you upgrade your libreswan packages.

    For the detailed security status of libreswan please refer to its
    security tracker page at:
    https://security-tracker.debian.org/tracker/libreswan

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmHjIkJfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0Qyxw//VZUgssIFLGL6X0xm0PHwHTRC+N1+KaLooGhf/b5TLGmzueUylrdVaFVj nTcQJ9y2HPrSMSYombmLXKwA0r7BawQXGxFjV9eSoR1LT4buspskSkQreQnJqqkv nU5oocaIq84cj8s5Izb9/cDvbfYpcqtCuTG8Z7AxDr0CKoAIr3iD4UP6T1+AGK7S 4PHTiIz8F1wIkxZEcl260omDZ59m7R5lKH/N0oMhFsX2J7gpyP2TH2da0XscHIr6 JSpNJFMaJ62Sd/fY1YaTZUiq4FuOyoU2XRjZGAOHTRGlwXy4VlICOOxZAQ6/GYiS 0zX34WZdXO1+CpcOsSHVUyVEeGO+xxSrNFMi7tj2mafuv2kjdAOQJ560bMbdYNJo +CNN3MiVNANiTFOcAzzSk57ovuliPxr4W+IikKhHEPtVXXhgOitVXVLVxRZKGMki eBkVEi9W744BYNQw4Gzw41wOzxJupeplv/84p+UedKrR/tjJtAw6SWu+GrWWJH4w Eso0oPtwFS9myZBaEGO/FufyDk3dOO1MHcNzUOeILUjVTNfHPowJuM/Sbqcq5GOS ITBhVOEgGIODHSFYycOBwu5hgbzw4GVw2BCyAbeB4kNXySMac/ySOLo0eX2k+E7M bMMuuKUUwJowkwI0qW0lnoUdGhMhWyEdQu1iRzYZ033yFEfZNdY=
    =zKmQ
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)