Red Hat Product Errata RHEA-2017:2853 - Product Enhancement Advisory
Issued:
2017-10-03
Updated:
2017-10-03

RHEA-2017:2853 - Product Enhancement Advisory

Synopsis

libreswan enhancement update

Type/Severity

Product Enhancement Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated libreswan packages that add one enhancement are now available for Red Hat Enterprise Linux 6.

Description

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN).

This update adds the following enhancement:

  • With this update, support for the new DNS Security Extensions (DNSSEC) root key has been added to Libreswan. This ensures DNSSEC keeps working after the new DNSSEC Key Signing Key (KSK) for the root zone is taken into circulation by IANA on 12 October 2017. (BZ#1493917)

Users of libreswan are advised to upgrade to these updated packages, which add this enhancement.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 6 x86_64
  • Red Hat Enterprise Linux Server 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
  • Red Hat Enterprise Linux Workstation 6 x86_64
  • Red Hat Enterprise Linux Workstation 6 i386
  • Red Hat Enterprise Linux Desktop 6 x86_64
  • Red Hat Enterprise Linux Desktop 6 i386
  • Red Hat Enterprise Linux for IBM z Systems 6 s390x
  • Red Hat Enterprise Linux for Power, big endian 6 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x

Fixes

  • BZ - 1493917 - Add DNSSEC trust anchor KSK 2017 [rhel-6.9.z]

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
x86_64
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
i386
libreswan-3.15-7.5.el6_9.i686.rpm SHA-256: edf2b0490e7e27aad368d5be50b3a4dfd55230cc7fcbddc77de676b12217d10f
libreswan-debuginfo-3.15-7.5.el6_9.i686.rpm SHA-256: 35046b55aa11c2903cde528f855302f5af54e73fac69fc6b367ab8d4458f4e86

Red Hat Enterprise Linux Server - Extended Life Cycle Support 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
x86_64
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
i386
libreswan-3.15-7.5.el6_9.i686.rpm SHA-256: edf2b0490e7e27aad368d5be50b3a4dfd55230cc7fcbddc77de676b12217d10f
libreswan-debuginfo-3.15-7.5.el6_9.i686.rpm SHA-256: 35046b55aa11c2903cde528f855302f5af54e73fac69fc6b367ab8d4458f4e86

Red Hat Enterprise Linux Workstation 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
x86_64
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
i386
libreswan-3.15-7.5.el6_9.i686.rpm SHA-256: edf2b0490e7e27aad368d5be50b3a4dfd55230cc7fcbddc77de676b12217d10f
libreswan-debuginfo-3.15-7.5.el6_9.i686.rpm SHA-256: 35046b55aa11c2903cde528f855302f5af54e73fac69fc6b367ab8d4458f4e86

Red Hat Enterprise Linux Desktop 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
x86_64
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
i386
libreswan-3.15-7.5.el6_9.i686.rpm SHA-256: edf2b0490e7e27aad368d5be50b3a4dfd55230cc7fcbddc77de676b12217d10f
libreswan-debuginfo-3.15-7.5.el6_9.i686.rpm SHA-256: 35046b55aa11c2903cde528f855302f5af54e73fac69fc6b367ab8d4458f4e86

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
s390x
libreswan-3.15-7.5.el6_9.s390x.rpm SHA-256: 5fadd11acb63ad64d92e0f9118890ca73fe9c46ab77feb365f067c52c53f8aad
libreswan-debuginfo-3.15-7.5.el6_9.s390x.rpm SHA-256: 936f4c02d51ebbe54c8c332250bf55961b3d3415ccdfde79e271b2913d253816

Red Hat Enterprise Linux for Power, big endian 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
ppc64
libreswan-3.15-7.5.el6_9.ppc64.rpm SHA-256: 41749ac8a7ee51e2be58dfd8e975a637c1c91eedd446accfb38e9c1b84596679
libreswan-debuginfo-3.15-7.5.el6_9.ppc64.rpm SHA-256: 07ea434261bbef89adbcae04644c6ff40b7e6d5884c38cdf3c003a76ea07a939

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
s390x
libreswan-3.15-7.5.el6_9.s390x.rpm SHA-256: 5fadd11acb63ad64d92e0f9118890ca73fe9c46ab77feb365f067c52c53f8aad
libreswan-debuginfo-3.15-7.5.el6_9.s390x.rpm SHA-256: 936f4c02d51ebbe54c8c332250bf55961b3d3415ccdfde79e271b2913d253816

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
x86_64
libreswan-3.15-7.5.el6_9.x86_64.rpm SHA-256: 6593e0e742b5d86aa570efdf13044af9b3b7da0b349a62f63be3c7c4d3be62d4
libreswan-debuginfo-3.15-7.5.el6_9.x86_64.rpm SHA-256: e380687454e6cf6f4dd39adac8ddf23624d2fcc6bb6165257808af86b5de806d
i386
libreswan-3.15-7.5.el6_9.i686.rpm SHA-256: edf2b0490e7e27aad368d5be50b3a4dfd55230cc7fcbddc77de676b12217d10f
libreswan-debuginfo-3.15-7.5.el6_9.i686.rpm SHA-256: 35046b55aa11c2903cde528f855302f5af54e73fac69fc6b367ab8d4458f4e86

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6

SRPM
libreswan-3.15-7.5.el6_9.src.rpm SHA-256: a30a6e276aeac9fe5f2e1e1dd6ec46663c51883b99877edbff6435a3f60b6824
s390x
libreswan-3.15-7.5.el6_9.s390x.rpm SHA-256: 5fadd11acb63ad64d92e0f9118890ca73fe9c46ab77feb365f067c52c53f8aad
libreswan-debuginfo-3.15-7.5.el6_9.s390x.rpm SHA-256: 936f4c02d51ebbe54c8c332250bf55961b3d3415ccdfde79e271b2913d253816

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.