Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 40: FEDORA-2024-6712c699fc Critical: StrongSwan Buffer Overflow

fedora
Calendar Grey June 11, 2024
Dist Fedora Esm H88
The latest Fedora 40 strongswan security update tackles CVE-2023-41913, rectifying critical buffer overflow and RCE vulnerabilities.
Fixes CVE-2023-41913 buffer overflow and possible RCE, various IKEv2 improvements

Summary

The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key

exchange protocols in conjunction with the native NETKEY IPsec stack of the

Linux kernel.

Update Information:

Fixes CVE-2023-41913 buffer overflow and possible RCE, various IKEv2 improvements

Topics%20covered

Topics Covered

security advisory update buffer overflow Fedora RCE strongswan IKEv2

Change Log

* Fri May 31 2024 Paul Wouters - 5.9.14-1 - Resolves: rhbz#2254560 CVE-2023-41913 buffer overflow and possible RCE - Resolved: rhbz#2250666 Update to 5.9.14 (IKEv2 OCSP extensions, seqno/regno overflow handling - Update to 5.9.13 (OCSP nonce set regression configuration option charon.ocsp_nonce_len) - Update to 5.9.12 (CVE-2023-41913 fix, various IKEv2 fixes)

References


[ 1 ] Bug #2254560 - CVE-2023-41913 strongswan: buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=2254560

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-6712c699fc' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: strongswan
Product: Fedora 40
Version: 5.9.14
Release: 1.fc40
URL: https://www.strongswan.org/
Summary: An OpenSource IPsec-based VPN and TNC solution

Topics%20covered

Topics Covered

security advisory update buffer overflow Fedora RCE strongswan IKEv2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here