Important: libreswan security update

🗓️ 16 May 2023 00:00:00Reported by AlmaLinuxType

almalinux

almalinux🔗 errata.almalinux.org👁 23 Views

Libreswan security update. IPsec and IKE implementation with strong cryptography for authentication and encryption

Reporter	Title	Published	Views	Family All 140
ATTACKERKB	CVE-2023-30570	29 May 202300:15	–	attackerkb
Tenable Nessus	Alibaba Cloud Linux 3 : 0039: libreswan (ALINUX3-SA-2024:0039)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libreswan (ALSA-2023:2122)	5 May 202300:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libreswan (ALSA-2023:3107)	19 May 202300:00	–	nessus
Tenable Nessus	AlmaLinux 9 : libreswan (ALSA-2023:3148)	18 May 202300:00	–	nessus
Tenable Nessus	Azure Linux 3.0 Security Update: libreswan (CVE-2023-30570)	1 Apr 202500:00	–	nessus
Tenable Nessus	CentOS 8 : libreswan (CESA-2023:2122)	8 Feb 202400:00	–	nessus
Tenable Nessus	CentOS 9 : libreswan-4.9-4.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	Fedora 38 : libreswan (2023-19046bf703)	13 May 202300:00	–	nessus
Tenable Nessus	Fedora 36 : libreswan (2023-30f824b8b8)	13 May 202300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	9	x86_64	libreswan	4.9-4.el9_2	libreswan-4.9-4.el9_2.x86_64.rpm
almalinux	9	ppc64le	libreswan	4.9-4.el9_2	libreswan-4.9-4.el9_2.ppc64le.rpm
almalinux	9	aarch64	libreswan	4.9-4.el9_2	libreswan-4.9-4.el9_2.aarch64.rpm
almalinux	9	s390x	libreswan	4.9-4.el9_2	libreswan-4.9-4.el9_2.s390x.rpm

Source	Link
access	www.access.redhat.com/errata/RHSA-2023:3148
access	www.access.redhat.com/security/cve/CVE-2023-2295
bugzilla	www.bugzilla.redhat.com/2189777
errata	www.errata.almalinux.org/9/ALSA-2023-3148.html

19 May 2023 22:00Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.5

EPSS0.01581

SSVC

libreswan ipsec ike cryptography authentication encryption security update cvss score almalinux vpn cve page