Lucene search
AmazonALAS-2024-2596HistoryJul 18, 2024 - 2:00 a.m.
Medium: libreswan
2024-07-1802:00:00
alas.aws.amazon.com
1
libreswan
ikev1
assertion failure
crash
update
amazon linux 2
cve-2024-3652
AI Score
6.8
Confidence
Low
Issue Overview:
The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan’s default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected. (CVE-2024-3652)
Affected Packages:
libreswan
Note:
This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update libreswan to update your system.
New Packages:
aarch64:
libreswan-3.25-4.8.amzn2.0.3.aarch64
libreswan-debuginfo-3.25-4.8.amzn2.0.3.aarch64
i686:
libreswan-3.25-4.8.amzn2.0.3.i686
libreswan-debuginfo-3.25-4.8.amzn2.0.3.i686
src:
libreswan-3.25-4.8.amzn2.0.3.src
x86_64:
libreswan-3.25-4.8.amzn2.0.3.x86_64
libreswan-debuginfo-3.25-4.8.amzn2.0.3.x86_64
Additional References
Red Hat: CVE-2024-3652
Mitre: CVE-2024-3652
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 2 | aarch64 | libreswan | < 3.25-4.8.amzn2.0.3 | libreswan-3.25-4.8.amzn2.0.3.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | libreswan-debuginfo | < 3.25-4.8.amzn2.0.3 | libreswan-debuginfo-3.25-4.8.amzn2.0.3.aarch64.rpm |
| Amazon Linux | 2 | i686 | libreswan | < 3.25-4.8.amzn2.0.3 | libreswan-3.25-4.8.amzn2.0.3.i686.rpm |
| Amazon Linux | 2 | i686 | libreswan-debuginfo | < 3.25-4.8.amzn2.0.3 | libreswan-debuginfo-3.25-4.8.amzn2.0.3.i686.rpm |
| Amazon Linux | 2 | x86_64 | libreswan | < 3.25-4.8.amzn2.0.3 | libreswan-3.25-4.8.amzn2.0.3.x86_64.rpm |
| Amazon Linux | 2 | x86_64 | libreswan-debuginfo | < 3.25-4.8.amzn2.0.3 | libreswan-debuginfo-3.25-4.8.amzn2.0.3.x86_64.rpm |
Related
osv
osv
Moderate: libreswan security update
2024-06-23 00:00:00
CVE-2024-3652
2024-04-11 02:15:47
Moderate: libreswan security update
2024-07-08 00:00:00
nessus
nessus
RHEL 9 : libreswan (RHSA-2024:4377)
2024-07-08 00:00:00
RHEL 8 : libreswan (RHSA-2024:4200)
2024-07-01 00:00:00
AlmaLinux 8 : libreswan (ALSA-2024:4376)
2024-07-10 00:00:00
rocky
rocky
libreswan security update
2024-07-02 14:11:35
debiancve
debiancve
CVE-2024-3652
2024-04-11 02:15:47
redos
redos
ROS-20240627-02
2024-06-27 00:00:00
alpinelinux
alpinelinux
CVE-2024-3652
2024-04-11 02:15:47
cbl_mariner
cbl_mariner
CVE-2024-3652 affecting package libreswan for versions less than 4.14-2
2024-04-30 01:31:53
ubuntucve
ubuntucve
CVE-2024-3652
2024-04-11 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: libreswan-4.15-1.fc39
2024-07-01 01:34:06
[SECURITY] Fedora 40 Update: libreswan-4.15-1.fc40
2024-07-01 04:50:56
redhatcve
redhatcve
CVE-2024-3652
2024-04-17 13:03:32
nvd
nvd
CVE-2024-3652
2024-04-11 02:15:47
cve
cve
CVE-2024-3652
2024-04-11 02:15:47
almalinux
almalinux
Moderate: libreswan security update
2024-06-23 00:00:00
Moderate: libreswan security update
2024-07-08 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0138)
2024-04-19 00:00:00
oraclelinux
oraclelinux
libreswan security update
2024-07-08 00:00:00
libreswan security update
2024-06-24 00:00:00
redhat
redhat
(RHSA-2024:4417) Moderate: libreswan security update
2024-07-09 09:41:06
(RHSA-2024:4050) Moderate: libreswan security update
2024-06-23 22:14:56
cvelist
cvelist
vulnrichment
vulnrichment
mageia
mageia
Updated libreswan packages fix security vulnerability
2024-04-19 04:16:42
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-07-31 12:54:26