- Issued:
- 2017-03-21
- Updated:
- 2017-03-21
RHBA-2017:0575 - Bug Fix Advisory
Synopsis
libreswan bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for libreswan is now available for Red Hat Enterprise Linux 6.
Description
Libreswan is an implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).
For detailed information on changes in this release, see the Red Hat Enterprise Linux 6.9 Release Notes and Red Hat Enterprise Linux 6.9 Technical Notes linked from the References section.
Users of libreswan are advised to upgrade to these updated packages.
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x
Fixes
- BZ - 1289498 - keyingtries=0 is broken - meaning it is interpreted as keyingtries=1
- BZ - 1313709 - ipsec pluto returns zero even if it fails
- BZ - 1315415 - ipsec.conf manpage does not contain any mention about crl-strict option
- BZ - 1335896 - ipsec initnss/checknss custom directory not recognized
- BZ - 1345959 - openswan - libreswan migration issues
- BZ - 1360134 - libreswan needs to check additional CRLs after LDAP CRL distributionpoint fails
CVEs
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| x86_64 | |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| i386 | |
| libreswan-3.15-7.3.el6.i686.rpm | SHA-256: 7fbdc879a39b4877f48f8fec3e3a9afdefb1d597f69168abd69a07d679c83c5a |
| libreswan-debuginfo-3.15-7.3.el6.i686.rpm | SHA-256: be996d03f5161f9796312d613741ac3608b09e9571f593a463e54cc4b9aa6551 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| x86_64 | |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| i386 | |
| libreswan-3.15-7.3.el6.i686.rpm | SHA-256: 7fbdc879a39b4877f48f8fec3e3a9afdefb1d597f69168abd69a07d679c83c5a |
| libreswan-debuginfo-3.15-7.3.el6.i686.rpm | SHA-256: be996d03f5161f9796312d613741ac3608b09e9571f593a463e54cc4b9aa6551 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| x86_64 | |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| i386 | |
| libreswan-3.15-7.3.el6.i686.rpm | SHA-256: 7fbdc879a39b4877f48f8fec3e3a9afdefb1d597f69168abd69a07d679c83c5a |
| libreswan-debuginfo-3.15-7.3.el6.i686.rpm | SHA-256: be996d03f5161f9796312d613741ac3608b09e9571f593a463e54cc4b9aa6551 |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| x86_64 | |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| i386 | |
| libreswan-3.15-7.3.el6.i686.rpm | SHA-256: 7fbdc879a39b4877f48f8fec3e3a9afdefb1d597f69168abd69a07d679c83c5a |
| libreswan-debuginfo-3.15-7.3.el6.i686.rpm | SHA-256: be996d03f5161f9796312d613741ac3608b09e9571f593a463e54cc4b9aa6551 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| s390x | |
| libreswan-3.15-7.3.el6.s390x.rpm | SHA-256: 3d368954ffec2471100615c6babececc639a60e264a784888db13562505b9523 |
| libreswan-debuginfo-3.15-7.3.el6.s390x.rpm | SHA-256: a4bfea4b03745a2c740120ea6cacbb2810d8f83d00a3a555441379303d7e3177 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| ppc64 | |
| libreswan-3.15-7.3.el6.ppc64.rpm | SHA-256: 9d73f4ed2c8b8bdf5df2bebdf52e558baa3cdc26390c971cc575bdc625470e12 |
| libreswan-debuginfo-3.15-7.3.el6.ppc64.rpm | SHA-256: 6a96abb79e5a96854eed00835b77f48c5b3ae3f757e91bdd3c359bce23b391b4 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| s390x | |
| libreswan-3.15-7.3.el6.s390x.rpm | SHA-256: 3d368954ffec2471100615c6babececc639a60e264a784888db13562505b9523 |
| libreswan-debuginfo-3.15-7.3.el6.s390x.rpm | SHA-256: a4bfea4b03745a2c740120ea6cacbb2810d8f83d00a3a555441379303d7e3177 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| x86_64 | |
| libreswan-3.15-7.3.el6.x86_64.rpm | SHA-256: a8feb6e6df4e8b205321a4f448e329f9c57d9c09675577f6978f05f150d6c8b8 |
| libreswan-debuginfo-3.15-7.3.el6.x86_64.rpm | SHA-256: 771fe83120a97086d7ef84b799b555b894cce6ce25e023dc052c6cef46b24e4d |
| i386 | |
| libreswan-3.15-7.3.el6.i686.rpm | SHA-256: 7fbdc879a39b4877f48f8fec3e3a9afdefb1d597f69168abd69a07d679c83c5a |
| libreswan-debuginfo-3.15-7.3.el6.i686.rpm | SHA-256: be996d03f5161f9796312d613741ac3608b09e9571f593a463e54cc4b9aa6551 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6
| SRPM | |
|---|---|
| libreswan-3.15-7.3.el6.src.rpm | SHA-256: 620f8941ceb26c338b5ebd4a942d7d1e412de9b299f5e6bfc4809861c1d07acd |
| s390x | |
| libreswan-3.15-7.3.el6.s390x.rpm | SHA-256: 3d368954ffec2471100615c6babececc639a60e264a784888db13562505b9523 |
| libreswan-debuginfo-3.15-7.3.el6.s390x.rpm | SHA-256: a4bfea4b03745a2c740120ea6cacbb2810d8f83d00a3a555441379303d7e3177 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
