Bug 31636 - libreswan new security issue CVE-2023-23009
Summary: libreswan new security issue CVE-2023-23009
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 8
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA8-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks:
 
Reported: 2023-03-04 22:59 CET by David Walser
Modified: 2023-03-11 20:02 CET (History)
5 users (show)

See Also:
Source RPM: libreswan-4.6-4.mga8.src.rpm
CVE:
Status comment:


Attachments

Description David Walser 2023-03-04 22:59:36 CET
Debian has issued an advisory on March 3:
https://www.debian.org/security/2023/dsa-5368

The issue is fixed upstream in 4.10:
https://libreswan.org/security/CVE-2023-23009/CVE-2023-23009.txt
Comment 1 Lewis Smith 2023-03-05 20:25:56 CET
I see Cauldron has already been updated to v4.10, which leaves M8.
Assigning to Stig who looks after libreswan.

Assignee: bugsquad => smelror

Comment 2 Stig-Ørjan Smelror 2023-03-06 07:41:15 CET
Advisory
========
This update fixes CVE-2023-23009 by adding an upstream patch.

CVE-2023-23009: A change in the libreswan 4.2 Traffic Selector parsing code introduced a missing check that would reject palformed Traffic Selector payloads. As such, in such case the code stumbles on to hit a double free, leading to a crash and restart of the pluto daemon. No remote code execution
is possible.


References
==========
https://libreswan.org/security/CVE-2023-23009/CVE-2023-23009.txt
https://security-tracker.debian.org/tracker/CVE-2023-23009


Files
=====

Uploaded to updates_testing

libreswan-4.6-4.1.mga8

from libreswan-4.6-4.1.mga8.src.rpm

Assignee: smelror => qa-bugs

Comment 3 Herman Viaene 2023-03-06 11:19:48 CET
MGA8-64 MATE on Acer Aspire 5253
No installation issues.
Ref bug 25065, no ill effects on my own LAN with own DNS server and NFS-shares.
OK for me.

Whiteboard: (none) => MGA8-64-OK
CC: (none) => herman.viaene

David Walser 2023-03-06 13:18:28 CET

CC: (none) => smelror

Comment 4 Thomas Andrews 2023-03-08 14:25:08 CET
Validating. Advisory in comment 2.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Dave Hodgins 2023-03-10 00:26:58 CET

CC: (none) => davidwhodgins
Keywords: (none) => advisory

Comment 5 Mageia Robot 2023-03-11 20:02:10 CET
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2023-0089.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED


Note You need to log in before you can comment on or make changes to this bug.