-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5048-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso January 15, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libreswan CVE ID : CVE-2022-23094 It was discovered that the libreswan IPsec implementation could be forced into a crash/restart via a malformed IKEv1 packet, resulting in denial of service. For the stable distribution (bullseye), this problem has been fixed in version 4.3-1+deb11u1. We recommend that you upgrade your libreswan packages. For the detailed security status of libreswan please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libreswan Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmHjIkJfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0Qyxw//VZUgssIFLGL6X0xm0PHwHTRC+N1+KaLooGhf/b5TLGmzueUylrdVaFVj nTcQJ9y2HPrSMSYombmLXKwA0r7BawQXGxFjV9eSoR1LT4buspskSkQreQnJqqkv nU5oocaIq84cj8s5Izb9/cDvbfYpcqtCuTG8Z7AxDr0CKoAIr3iD4UP6T1+AGK7S 4PHTiIz8F1wIkxZEcl260omDZ59m7R5lKH/N0oMhFsX2J7gpyP2TH2da0XscHIr6 JSpNJFMaJ62Sd/fY1YaTZUiq4FuOyoU2XRjZGAOHTRGlwXy4VlICOOxZAQ6/GYiS 0zX34WZdXO1+CpcOsSHVUyVEeGO+xxSrNFMi7tj2mafuv2kjdAOQJ560bMbdYNJo +CNN3MiVNANiTFOcAzzSk57ovuliPxr4W+IikKhHEPtVXXhgOitVXVLVxRZKGMki eBkVEi9W744BYNQw4Gzw41wOzxJupeplv/84p+UedKrR/tjJtAw6SWu+GrWWJH4w Eso0oPtwFS9myZBaEGO/FufyDk3dOO1MHcNzUOeILUjVTNfHPowJuM/Sbqcq5GOS ITBhVOEgGIODHSFYycOBwu5hgbzw4GVw2BCyAbeB4kNXySMac/ySOLo0eX2k+E7M bMMuuKUUwJowkwI0qW0lnoUdGhMhWyEdQu1iRzYZ033yFEfZNdY= =zKmQ -----END PGP SIGNATURE-----