What is the severity of REDHAT-BUG-2189777?

The severity of REDHAT-BUG-2189777, related to the libreswan flaw CVE-2023-30570, is classified as critical.

How do I fix REDHAT-BUG-2189777?

To fix REDHAT-BUG-2189777, update to the patched version of libreswan provided in the security advisory.

What products are affected by REDHAT-BUG-2189777?

REDHAT-BUG-2189777 affects Red Hat Enterprise Linux 8 (up to 8.8), Red Hat Enterprise Linux 9 (up to 9.2), and Red Hat libreswan.

What vulnerabilities does REDHAT-BUG-2189777 address?

REDHAT-BUG-2189777 addresses vulnerabilities in the libreswan implementation that could allow for a malicious IKEv1 aggregation.

Is there a workaround for REDHAT-BUG-2189777 until I can apply the fix?

There are no recommended workarounds for REDHAT-BUG-2189777; it is advised to apply the security update as soon as possible.

Vulnerability/
REDHAT-BUG-2189777

high

26/4/2023

17/5/2023

REDHAT-BUG-2189777

First published: Wed Apr 26 2023(Updated: )

The libreswan flaw <a href="https://access.redhat.com/security/cve/CVE-2023-30570">CVE-2023-30570</a> (<a class="bz_bug_link bz_status_CLOSED bz_closed bz_public " title="CLOSED ERRATA - CVE-2023-30570 libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan" href="show_bug.cgi?id=2187165">bug 2187165</a>) was addressed in Red Hat Enterprise Linux 8 via erratum RHSA-2023:2122 and in Red Hat Enterprise Linux 9 via erratum RHSA-2023:2120, released on May 04, 2023: <a href="https://access.redhat.com/errata/RHSA-2023:2122">https://access.redhat.com/errata/RHSA-2023:2122</a> <a href="https://access.redhat.com/errata/RHSA-2023:2120">https://access.redhat.com/errata/RHSA-2023:2120</a> However, the fix for this issue was not included in the libreswan updates released as part of Red Hat Enterprise Linux 8.8 GA erratum (RHBA-2023:2865) and Red Hat Enterprise Linux 9.2 GA erratum (RHBA-2023:2355), causing a security regression of previously released fix. A new CVE-ID <a href="https://access.redhat.com/security/cve/CVE-2023-2295">CVE-2023-2295</a> was assigned for this security regression. Note that this issue and CVE-ID is specific to the libreswan packages as shipped with Red Hat Enterprise Linux and is not applicable to any upstream libreswan version or libreswan packages of any other vendor that are not directly based on Red Hat Enterprise Linux packages. For more information about the original flaw, refer to the CVE page or bug linked above.

Affected Software	Affected Version	How to fix
Red Hat Enterprise Linux	<8.8
Red Hat Enterprise Linux	<9.2
Red Hat Libreswan

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-2189777?
The severity of REDHAT-BUG-2189777, related to the libreswan flaw CVE-2023-30570, is classified as critical.
How do I fix REDHAT-BUG-2189777?
To fix REDHAT-BUG-2189777, update to the patched version of libreswan provided in the security advisory.
What products are affected by REDHAT-BUG-2189777?
REDHAT-BUG-2189777 affects Red Hat Enterprise Linux 8 (up to 8.8), Red Hat Enterprise Linux 9 (up to 9.2), and Red Hat libreswan.
What vulnerabilities does REDHAT-BUG-2189777 address?
REDHAT-BUG-2189777 addresses vulnerabilities in the libreswan implementation that could allow for a malicious IKEv1 aggregation.
Is there a workaround for REDHAT-BUG-2189777 until I can apply the fix?
There are no recommended workarounds for REDHAT-BUG-2189777; it is advised to apply the security update as soon as possible.

agent/last-modified-date
agent/first-publish-date
agent/type
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-2295
agent/severity
agent/references
agent/description
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/red hat
canonical/red hat enterprise linux
canonical/red hat libreswan

Frequently Asked Questions

What is the severity of REDHAT-BUG-2189777?
The severity of REDHAT-BUG-2189777, related to the libreswan flaw CVE-2023-30570, is classified as critical.
How do I fix REDHAT-BUG-2189777?
To fix REDHAT-BUG-2189777, update to the patched version of libreswan provided in the security advisory.
What products are affected by REDHAT-BUG-2189777?
REDHAT-BUG-2189777 affects Red Hat Enterprise Linux 8 (up to 8.8), Red Hat Enterprise Linux 9 (up to 9.2), and Red Hat libreswan.
What vulnerabilities does REDHAT-BUG-2189777 address?
REDHAT-BUG-2189777 addresses vulnerabilities in the libreswan implementation that could allow for a malicious IKEv1 aggregation.
Is there a workaround for REDHAT-BUG-2189777 until I can apply the fix?
There are no recommended workarounds for REDHAT-BUG-2189777; it is advised to apply the security update as soon as possible.

REDHAT-BUG-2189777

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-2189777?

How do I fix REDHAT-BUG-2189777?

What products are affected by REDHAT-BUG-2189777?

What vulnerabilities does REDHAT-BUG-2189777 address?

Is there a workaround for REDHAT-BUG-2189777 until I can apply the fix?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of REDHAT-BUG-2189777?

How do I fix REDHAT-BUG-2189777?

What products are affected by REDHAT-BUG-2189777?

What vulnerabilities does REDHAT-BUG-2189777 address?

Is there a workaround for REDHAT-BUG-2189777 until I can apply the fix?