ELEA-2019-0178

ELEA-2019-0178 - libreswan bug fix and enhancement update

Type:	ENHANCEMENT
Impact:	NA
Release Date:	2019-01-31

Description

[3.25-4.1.0.1]
- add libreswan-oracle.patch to detect Oracle Linux distro

[3.25-4.1]
- Resolves: rhbz#1665369 libreswan 3.25 in FIPS mode is incorrectly rejecting X.509 public keys that are >= 3072 bits [rhel-7.6.z]

[3.25-4]
- Resolves: rhbz#1660536 libreswan assertion failed when OAKLEY_KEY_LENGTH is zero for IKE using AES_CBC
- Resolves: rhbz#1660544 config: recursive include check doesn't work
- Resolves: rhbz#1660542 Libreswan crash upon receiving ISAKMP_NEXT_D with appended ISAKMP_NEXT_N
- Resolves: rhbz#1664244 [abrt] [faf] libreswan: strncpy(): /usr/libexec/ipsec/pluto killed by 11

[3.25-3]
- Resolves: rhbz#1655440 Unable to verify certificate with non-empty Extended Key Usage which does not include serverAuth or clientAuth

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 7 (aarch64)	libreswan-3.25-4.1.0.1.el7_6.src.rpm	207cf8cb560fb7f0d682d8dff5ea90dc4580b2ef1233137344d80b3b28296120	ELBA-2021-9558	ol7_aarch64_latest
	libreswan-3.25-4.1.0.1.el7_6.aarch64.rpm	019f90925bdfcd21c0893168263729f4ce833d310b2eb9fbe752493bb5773c5f	ELBA-2021-9558	ol7_aarch64_latest
Oracle Linux 7 (x86_64)	libreswan-3.25-4.1.0.1.el7_6.src.rpm	207cf8cb560fb7f0d682d8dff5ea90dc4580b2ef1233137344d80b3b28296120	ELBA-2021-9558	ol7_x86_64_latest
	libreswan-3.25-4.1.0.1.el7_6.src.rpm	207cf8cb560fb7f0d682d8dff5ea90dc4580b2ef1233137344d80b3b28296120	ELBA-2021-9558	ol7_x86_64_u6_patch
	libreswan-3.25-4.1.0.1.el7_6.x86_64.rpm	94486f3b872032922ecb1256617b50ff622f252c8b6e771bb5bcbace84d3a953	ELBA-2021-9558	ol7_x86_64_latest
	libreswan-3.25-4.1.0.1.el7_6.x86_64.rpm	94486f3b872032922ecb1256617b50ff622f252c8b6e771bb5bcbace84d3a953	ELBA-2021-9558	ol7_x86_64_u6_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team