Issued:: 2024-10-22
Updated:: 2024-10-22

RHSA-2024:8312 - Security Advisory

Overview
Updated Packages

Synopsis

Important: NetworkManager-libreswan security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This package contains software for integrating the libreswan VPN software
with NetworkManager and the GNOME desktop

Security Fix(es):

NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x

Fixes

BZ - 2313828 - CVE-2024-9050 NetworkManager-libreswan: Local privilege escalation via leftupdown

CVEs

CVE-2024-9050

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0

SRPM
NetworkManager-libreswan-1.2.14-3.el9_0.src.rpm	SHA-256: 845c7e33352b8ea3a7244fa10263ac0b5ff9570d94c91944408d4cbf9c5164c0
ppc64le
NetworkManager-libreswan-1.2.14-3.el9_0.ppc64le.rpm	SHA-256: 8a2d9a09aa368301af1416bbe90132b7c3ff59681c1369543eeecb7f2b7b5174
NetworkManager-libreswan-debuginfo-1.2.14-3.el9_0.ppc64le.rpm	SHA-256: e5c7f045c7b75c66327dd511590c36845bc42e10e5d1490fcbb61972d29bb52c
NetworkManager-libreswan-debugsource-1.2.14-3.el9_0.ppc64le.rpm	SHA-256: a139f3b178b0e6e358397f0a86329c3c5b2f2c860ca3912d52a7719e588c82a5
NetworkManager-libreswan-gnome-1.2.14-3.el9_0.ppc64le.rpm	SHA-256: 6419bd68fe0dbadc7e3e51deefcd9ba5e5e4de76432a38c8260af74af12b86b9
NetworkManager-libreswan-gnome-debuginfo-1.2.14-3.el9_0.ppc64le.rpm	SHA-256: 5f8b7166363453790ebe4df0a07408a4edd206fc9b23f9d274914efd6d64ad2f

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0

SRPM
NetworkManager-libreswan-1.2.14-3.el9_0.src.rpm	SHA-256: 845c7e33352b8ea3a7244fa10263ac0b5ff9570d94c91944408d4cbf9c5164c0
x86_64
NetworkManager-libreswan-1.2.14-3.el9_0.x86_64.rpm	SHA-256: 55bf98995269af9679c0f8083d71c82a3c6a492ff6edaeb899c44e13a194588d
NetworkManager-libreswan-debuginfo-1.2.14-3.el9_0.x86_64.rpm	SHA-256: 27b3172c7bb716963f6fb3d2df53cf0a981d5647e8ace9fb7b0c27a0838f5d6a
NetworkManager-libreswan-debugsource-1.2.14-3.el9_0.x86_64.rpm	SHA-256: 4ea16c366c3b1db5eae01d7b90055626f4412122548d812a9aa67106273e0cc0
NetworkManager-libreswan-gnome-1.2.14-3.el9_0.x86_64.rpm	SHA-256: 6c0c462b230685ac8f35201a4d411fd5e549d8c3483caf992b2c7307e81ac85a
NetworkManager-libreswan-gnome-debuginfo-1.2.14-3.el9_0.x86_64.rpm	SHA-256: 1cb8e371f232ea843558e8957242f59fdf52200dfe3596cbe08a1ec1664b911e

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0

SRPM
NetworkManager-libreswan-1.2.14-3.el9_0.src.rpm	SHA-256: 845c7e33352b8ea3a7244fa10263ac0b5ff9570d94c91944408d4cbf9c5164c0
aarch64
NetworkManager-libreswan-1.2.14-3.el9_0.aarch64.rpm	SHA-256: 74487762335f921ccbe1665752624be76c7a1b29b121dc980a35430396164b1e
NetworkManager-libreswan-debuginfo-1.2.14-3.el9_0.aarch64.rpm	SHA-256: 4158a2ecc89858b68a2f9326ca9f862fa2f05aae4064068bcba919eecfab7c53
NetworkManager-libreswan-debugsource-1.2.14-3.el9_0.aarch64.rpm	SHA-256: 28c24904171b583af7aa95936afdc0cd49dc11f80f594119fbd371421c160867
NetworkManager-libreswan-gnome-1.2.14-3.el9_0.aarch64.rpm	SHA-256: 2c88d13bd9440628b0dc63e1c0bed6f13ef0861973134acbb5257edd29fdfed7
NetworkManager-libreswan-gnome-debuginfo-1.2.14-3.el9_0.aarch64.rpm	SHA-256: 3d029a19e0e8f002460217730b4eadf5a0e9e11c386cc808eb155be2cc1e3588

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0

SRPM
NetworkManager-libreswan-1.2.14-3.el9_0.src.rpm	SHA-256: 845c7e33352b8ea3a7244fa10263ac0b5ff9570d94c91944408d4cbf9c5164c0
s390x
NetworkManager-libreswan-1.2.14-3.el9_0.s390x.rpm	SHA-256: 1437d47762089ae80350e460eb4cbeb75acb4cdc43f1f53e1e8581fae8d71ec8
NetworkManager-libreswan-debuginfo-1.2.14-3.el9_0.s390x.rpm	SHA-256: db7bf3f115868aca771d6c1a1e167cf76c58858a8467672978593de2ed6297fa
NetworkManager-libreswan-debugsource-1.2.14-3.el9_0.s390x.rpm	SHA-256: 45e5dfd96761386a2b4b6b9cbc2d2cefa1f98bc286352eb09be28eaa7cd823ee
NetworkManager-libreswan-gnome-1.2.14-3.el9_0.s390x.rpm	SHA-256: dc71e7c649696cddfa0512f51df8eb2c62583ed631c901c0f9d0d0cd7502226a
NetworkManager-libreswan-gnome-debuginfo-1.2.14-3.el9_0.s390x.rpm	SHA-256: b7957271d5f8d3bc394261630a8ba232e80c6427543f8ab7a3d1bdeadc0965ce

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation