Fedora 39: FEDORA-2024-d20b38c63f important: libreswan local escalation
fedora
October 31, 2024
This is an update to 1.2.24 release of NetworkManager-libreswan, the IPSec VPN plugin for NetworkManager
Summary
This package contains software for integrating the libreswan VPN software
with NetworkManager and the GNOME desktop
Update Information:
This is an update to 1.2.24 release of NetworkManager-libreswan, the IPSec VPN plugin for NetworkManager. It fixes a local privilege escalation bug due to improper escaping of Libreswan configuration. (CVE-2024-9050)
Change Log
* Tue Oct 22 2024 Lubomir Rintel
References
[ 1 ] Bug #2320956 - CVE-2024-9050 NetworkManager-libreswan: Local privilege escalation via leftupdown [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2320956
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d20b38c63f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: NetworkManager-libreswan
Product: Fedora 39
Version: 1.2.24
Release: 1.fc39
Summary: NetworkManager VPN plug-in for IPsec VPN
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!