Fedora 22: strongswan Security Update
Summary
The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key
exchange protocols in conjunction with the native NETKEY IPsec stack of the
Linux kernel.
Update Information:
New upstream release 5.3.2. Fixes CVE-2014-9221 and CVE-2015-3991.
Change Log
* Tue Jun 9 2015 Pavel Å imerda
References
[ 1 ] Bug #1178956 - CVE-2014-9221 strongswan: denial-of-service vulnerability in libtls when processing crafted Key Exchange payload [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1178956 [ 2 ] Bug #1228819 - CVE-2015-3991 strongswan: incorrect payload processing for different IKE versions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1228819
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update strongswan' at the command line. For more information, refer to "Managing Software with yum", available at .