Issued:: 2024-10-23
Updated:: 2024-10-23

RHSA-2024:8353 - Security Advisory

Overview
Updated Packages

Synopsis

Important: NetworkManager-libreswan security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktop

Security Fix(es):

NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for ARM 64 8 aarch64

Fixes

BZ - 2313828 - CVE-2024-9050 NetworkManager-libreswan: Local privilege escalation via leftupdown

CVEs

CVE-2024-9050

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
NetworkManager-libreswan-1.2.10-7.el8_10.src.rpm	SHA-256: 781c13f9104f2beedfa40bfb88276ff4355f9d7da4b172420b57476e74fd59b9
x86_64
NetworkManager-libreswan-1.2.10-7.el8_10.x86_64.rpm	SHA-256: b322bfe178a98c7d71f6e8a3f598bb42d582fa3b01707400b1867e25f19c2f78
NetworkManager-libreswan-debuginfo-1.2.10-7.el8_10.x86_64.rpm	SHA-256: d6073c244c8a31c5c30d8205768e518a91eb2d1a7e9ef33ac98d4050c6c3c7aa
NetworkManager-libreswan-debugsource-1.2.10-7.el8_10.x86_64.rpm	SHA-256: 2bbc59eab113e284bc8c96943bddbb3d23e113d8570a640fb768d925169f5458
NetworkManager-libreswan-gnome-1.2.10-7.el8_10.x86_64.rpm	SHA-256: b0e6bd155d86a531d76128d10885646c21e5aa5bdd358e03c84cb3c3b3c0c4f2
NetworkManager-libreswan-gnome-debuginfo-1.2.10-7.el8_10.x86_64.rpm	SHA-256: 8458bd95f7fa9293ef8358e41ab6ec869ce2edfc54a89cb8855ef3eb10be4539

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
NetworkManager-libreswan-1.2.10-7.el8_10.src.rpm	SHA-256: 781c13f9104f2beedfa40bfb88276ff4355f9d7da4b172420b57476e74fd59b9
s390x
NetworkManager-libreswan-1.2.10-7.el8_10.s390x.rpm	SHA-256: dea7e86312bda193daa476c6578eba881a63a2a696a6ae02146aa2504a1dbda6
NetworkManager-libreswan-debuginfo-1.2.10-7.el8_10.s390x.rpm	SHA-256: 2282f823cc2f0e618c519e689d4da9c8538b3b054d67df03b9452b79518960f5
NetworkManager-libreswan-debugsource-1.2.10-7.el8_10.s390x.rpm	SHA-256: e3a6f8b4d86cde221149c12d2b027f86c4156777a7b0d2bda3ff76774a32542a
NetworkManager-libreswan-gnome-1.2.10-7.el8_10.s390x.rpm	SHA-256: c721a64d586ae2352eb0949281546aba4dc1b52da22247391c951ecc57dfff33
NetworkManager-libreswan-gnome-debuginfo-1.2.10-7.el8_10.s390x.rpm	SHA-256: c47fb501380a44fcd5d3d030785d551261562da2687521910ce5a6cc0370a4ae

Red Hat Enterprise Linux for Power, little endian 8

SRPM
NetworkManager-libreswan-1.2.10-7.el8_10.src.rpm	SHA-256: 781c13f9104f2beedfa40bfb88276ff4355f9d7da4b172420b57476e74fd59b9
ppc64le
NetworkManager-libreswan-1.2.10-7.el8_10.ppc64le.rpm	SHA-256: 9b34de44ca78d930b6816b8ac659bbc2854bdf170c5abec939910b789670c8b5
NetworkManager-libreswan-debuginfo-1.2.10-7.el8_10.ppc64le.rpm	SHA-256: 6ae92f9dd86f8de91ec4759637f93531b49b5ba58e9e8aee14b9f930ffdc73aa
NetworkManager-libreswan-debugsource-1.2.10-7.el8_10.ppc64le.rpm	SHA-256: 3b600a430eca7f333c890713baf58c15b40901952a60d3a38ea4a2fba6e44f97
NetworkManager-libreswan-gnome-1.2.10-7.el8_10.ppc64le.rpm	SHA-256: e0bc101a4585ab5571f73ccb608d2c499a2ceb3314ca99e4735de71d758fde22
NetworkManager-libreswan-gnome-debuginfo-1.2.10-7.el8_10.ppc64le.rpm	SHA-256: daf5328a66e5b7fb9452d4ac0829f0df09580ec3216e819c129dd2180285ebbb

Red Hat Enterprise Linux for ARM 64 8

SRPM
NetworkManager-libreswan-1.2.10-7.el8_10.src.rpm	SHA-256: 781c13f9104f2beedfa40bfb88276ff4355f9d7da4b172420b57476e74fd59b9
aarch64
NetworkManager-libreswan-1.2.10-7.el8_10.aarch64.rpm	SHA-256: 7606c693259c50523eb92f9a62152f2cc9cc5d2ce2442f3e2369bbd1da2f513f
NetworkManager-libreswan-debuginfo-1.2.10-7.el8_10.aarch64.rpm	SHA-256: 9d2f5f04cc4936a27c9bcfa29c888f38a4bbe71ef36a4533c031b318990a7aee
NetworkManager-libreswan-debugsource-1.2.10-7.el8_10.aarch64.rpm	SHA-256: 79449e5beedf8804a2b9bac41a196bdd0508eeb1474545f80a9bd30e9c292a9b
NetworkManager-libreswan-gnome-1.2.10-7.el8_10.aarch64.rpm	SHA-256: d7025c64a8f1dce57ecffabd1e8d5705abe65e03cd8405e66006d8e2b7a63ac2
NetworkManager-libreswan-gnome-debuginfo-1.2.10-7.el8_10.aarch64.rpm	SHA-256: 2208f02d002dda18f2a84cc7607878865485ea0be9ab7352d914bc175edd5cbd

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation