Issued:: 2024-11-13
Updated:: 2024-11-13

RHSA-2024:9555 - Security Advisory

Overview
Updated Packages

Synopsis

Important: NetworkManager-libreswan security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktop

Security Fix(es):

NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 9 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

BZ - 2313828 - CVE-2024-9050 NetworkManager-libreswan: Local privilege escalation via leftupdown

CVEs

CVE-2024-9050

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
x86_64
NetworkManager-libreswan-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 2b7b867f2a66f10cdd41b9d64d6bf69d44b330acd4a11096d1b397c31961a089
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: d126d01f76ead5b52416d87097230ab6af495cd56f086861589c4fabadce2387
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 6d61a0ca7c8d22dd72d2555d182a0cb233af74a6d5396c0543d06987cf17036e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.x86_64.rpm	SHA-256: ae9c297ed7e84d766371858b66f94386278f42751cd6111ef7531a58056e0aae
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: a0b0254b2288bd25a9dccee0ada2f02f2361baff868aeec6190a3fa57c8f55d5

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
x86_64
NetworkManager-libreswan-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 2b7b867f2a66f10cdd41b9d64d6bf69d44b330acd4a11096d1b397c31961a089
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: d126d01f76ead5b52416d87097230ab6af495cd56f086861589c4fabadce2387
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 6d61a0ca7c8d22dd72d2555d182a0cb233af74a6d5396c0543d06987cf17036e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.x86_64.rpm	SHA-256: ae9c297ed7e84d766371858b66f94386278f42751cd6111ef7531a58056e0aae
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: a0b0254b2288bd25a9dccee0ada2f02f2361baff868aeec6190a3fa57c8f55d5

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
x86_64
NetworkManager-libreswan-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 2b7b867f2a66f10cdd41b9d64d6bf69d44b330acd4a11096d1b397c31961a089
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: d126d01f76ead5b52416d87097230ab6af495cd56f086861589c4fabadce2387
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 6d61a0ca7c8d22dd72d2555d182a0cb233af74a6d5396c0543d06987cf17036e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.x86_64.rpm	SHA-256: ae9c297ed7e84d766371858b66f94386278f42751cd6111ef7531a58056e0aae
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: a0b0254b2288bd25a9dccee0ada2f02f2361baff868aeec6190a3fa57c8f55d5

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
s390x
NetworkManager-libreswan-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1c5b033b990efc54bebb7a5f06a0c40b7c063b961f499738862fdff6574ff7d1
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b88eab29d9efb1cf30d3f7bf204d47d849ceb10ee67870c966b0ab0b3f87a7f
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.s390x.rpm	SHA-256: 74e1da6cb6e6d66d639fc15fb6f5e5a9f7e6b0f3acdfe77bae1177dd58e252f2
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.s390x.rpm	SHA-256: 99ecd2a48e38ef96380ad6db419a597f7052a81ef9868ad296bead64031f9702
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b1858b275766b01640038ee1dcdbd9329bab41eb8242f2ca7d9c9a35c4edfa5

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
s390x
NetworkManager-libreswan-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1c5b033b990efc54bebb7a5f06a0c40b7c063b961f499738862fdff6574ff7d1
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b88eab29d9efb1cf30d3f7bf204d47d849ceb10ee67870c966b0ab0b3f87a7f
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.s390x.rpm	SHA-256: 74e1da6cb6e6d66d639fc15fb6f5e5a9f7e6b0f3acdfe77bae1177dd58e252f2
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.s390x.rpm	SHA-256: 99ecd2a48e38ef96380ad6db419a597f7052a81ef9868ad296bead64031f9702
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b1858b275766b01640038ee1dcdbd9329bab41eb8242f2ca7d9c9a35c4edfa5

Red Hat Enterprise Linux for Power, little endian 9

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
ppc64le
NetworkManager-libreswan-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 560c65095e22546bef05cf4440783e727f88041686f6bc4616b055ba74deabed
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 54a4c602375e576cff8713d719556f1ad1ddf3f28e5c2a2fd98f706f26fee263
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: a12c71c2b2647a62955959fc80865d78c73aae5121558d28749ec99655a86174
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: c1500401f1603e793bbe522d0278e0d0fcb6fddbc61b6a942a94dd22b11ee3a0
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 161f4ba354163ee9f327f734c1b1329de75f38e6a6f7596f4495df7799b5428a

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
ppc64le
NetworkManager-libreswan-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 560c65095e22546bef05cf4440783e727f88041686f6bc4616b055ba74deabed
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 54a4c602375e576cff8713d719556f1ad1ddf3f28e5c2a2fd98f706f26fee263
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: a12c71c2b2647a62955959fc80865d78c73aae5121558d28749ec99655a86174
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: c1500401f1603e793bbe522d0278e0d0fcb6fddbc61b6a942a94dd22b11ee3a0
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 161f4ba354163ee9f327f734c1b1329de75f38e6a6f7596f4495df7799b5428a

Red Hat Enterprise Linux for ARM 64 9

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
aarch64
NetworkManager-libreswan-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 50a97451290402fcf924d3c94c18d6543707cb1252574430c3d0b53f59810910
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f9c7fc553d8e6988a9d9211728794105f507ae428ed3ae2a90f964419f2cf3d7
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.aarch64.rpm	SHA-256: ddc9670f277a58e165b25370ee2814e3ed05b6ea7ea3d697095237a063e17e6e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f3429e764e70039dbb5da7fad7ef8be0a72c2dabe3f3bc56f21f1ad9ae514d8c
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 18bec9bd8e558509c0b5efb6fa2f7e2fb078739647cd13786907bc1074771ca5

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
aarch64
NetworkManager-libreswan-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 50a97451290402fcf924d3c94c18d6543707cb1252574430c3d0b53f59810910
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f9c7fc553d8e6988a9d9211728794105f507ae428ed3ae2a90f964419f2cf3d7
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.aarch64.rpm	SHA-256: ddc9670f277a58e165b25370ee2814e3ed05b6ea7ea3d697095237a063e17e6e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f3429e764e70039dbb5da7fad7ef8be0a72c2dabe3f3bc56f21f1ad9ae514d8c
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 18bec9bd8e558509c0b5efb6fa2f7e2fb078739647cd13786907bc1074771ca5

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
ppc64le
NetworkManager-libreswan-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 560c65095e22546bef05cf4440783e727f88041686f6bc4616b055ba74deabed
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 54a4c602375e576cff8713d719556f1ad1ddf3f28e5c2a2fd98f706f26fee263
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: a12c71c2b2647a62955959fc80865d78c73aae5121558d28749ec99655a86174
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: c1500401f1603e793bbe522d0278e0d0fcb6fddbc61b6a942a94dd22b11ee3a0
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.ppc64le.rpm	SHA-256: 161f4ba354163ee9f327f734c1b1329de75f38e6a6f7596f4495df7799b5428a

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
x86_64
NetworkManager-libreswan-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 2b7b867f2a66f10cdd41b9d64d6bf69d44b330acd4a11096d1b397c31961a089
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: d126d01f76ead5b52416d87097230ab6af495cd56f086861589c4fabadce2387
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.x86_64.rpm	SHA-256: 6d61a0ca7c8d22dd72d2555d182a0cb233af74a6d5396c0543d06987cf17036e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.x86_64.rpm	SHA-256: ae9c297ed7e84d766371858b66f94386278f42751cd6111ef7531a58056e0aae
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.x86_64.rpm	SHA-256: a0b0254b2288bd25a9dccee0ada2f02f2361baff868aeec6190a3fa57c8f55d5

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
aarch64
NetworkManager-libreswan-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 50a97451290402fcf924d3c94c18d6543707cb1252574430c3d0b53f59810910
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f9c7fc553d8e6988a9d9211728794105f507ae428ed3ae2a90f964419f2cf3d7
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.aarch64.rpm	SHA-256: ddc9670f277a58e165b25370ee2814e3ed05b6ea7ea3d697095237a063e17e6e
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.aarch64.rpm	SHA-256: f3429e764e70039dbb5da7fad7ef8be0a72c2dabe3f3bc56f21f1ad9ae514d8c
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.aarch64.rpm	SHA-256: 18bec9bd8e558509c0b5efb6fa2f7e2fb078739647cd13786907bc1074771ca5

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
NetworkManager-libreswan-1.2.22-4.el9_5.src.rpm	SHA-256: b9818cd8d59a31d3beea9db8d68d3fb972df0ab8d2eb3c99401c1d7782345883
s390x
NetworkManager-libreswan-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1c5b033b990efc54bebb7a5f06a0c40b7c063b961f499738862fdff6574ff7d1
NetworkManager-libreswan-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b88eab29d9efb1cf30d3f7bf204d47d849ceb10ee67870c966b0ab0b3f87a7f
NetworkManager-libreswan-debugsource-1.2.22-4.el9_5.s390x.rpm	SHA-256: 74e1da6cb6e6d66d639fc15fb6f5e5a9f7e6b0f3acdfe77bae1177dd58e252f2
NetworkManager-libreswan-gnome-1.2.22-4.el9_5.s390x.rpm	SHA-256: 99ecd2a48e38ef96380ad6db419a597f7052a81ef9868ad296bead64031f9702
NetworkManager-libreswan-gnome-debuginfo-1.2.22-4.el9_5.s390x.rpm	SHA-256: 1b1858b275766b01640038ee1dcdbd9329bab41eb8242f2ca7d9c9a35c4edfa5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation