Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libreswan-4.12-2.el9 RPM for x86_64

From CentOS Stream 9 AppStream for x86_64

Name: libreswan Distribution: CentOS
Version: 4.12 Vendor: CentOS
Release: 2.el9 Build date: Thu May 2 03:51:48 2024
Group: Unspecified Build host: x86-04.stream.rdu2.redhat.com
Size: 5401765 Source RPM: libreswan-4.12-2.el9.src.rpm
Packager: [email protected]
Url: https://libreswan.org/
Summary: Internet Key Exchange (IKEv1 and IKEv2) implementation for IPsec
Libreswan is a free implementation of IPsec & IKE for Linux.  IPsec is
the Internet Protocol Security and uses strong cryptography to provide
both authentication and encryption services.  These services allow you
to build secure tunnels through untrusted networks.  Everything passing
through the untrusted net is encrypted by the ipsec gateway machine and
decrypted by the gateway at the other end of the tunnel.  The resulting
tunnel is a virtual private network or VPN.

This package contains the daemons and userland tools for setting up
Libreswan.

Libreswan also supports IKEv2 (RFC7296) and Secure Labeling

Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Provides

Requires

License

GPLv2

Changelog

* Thu Apr 11 2024 Daiki Ueno <[email protected]> - 4.12-2
  - Fix CVE-2024-2357 (RHEL-28743)
  - x509: unpack IPv6 general names based on length (RHEL-32720)
* Wed Aug 09 2023 Daiki Ueno <[email protected]> - 4.12-1
  - Update to 4.12 to fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712
  - Resolves: rhbz#2215956
* Fri May 05 2023 Sahana Prasad <[email protected]> - 4.9-5
  - Just bumping up the version to include bugs for CVE-2023-2295. There is no
    code fix for it. Fix for it is including the code fix for CVE-2023-30570.
  - Fix CVE-2023-2295 Regression of CVE-2023-30570 fixes in the
    Red Hat Enterprise Linux
  - Resolves: rhbz#2189777, rhbz#2190148
* Thu May 04 2023 Sahana Prasad <[email protected]> - 4.9-4
  - Just bumping up the version as an incorrect 9.3 build was created.
  - Related: rhbz#2187171
* Thu May 04 2023 Sahana Prasad <[email protected]> - 4.9-3
  - Fix CVE-2023-30570:Malicious IKEv1 Aggressive Mode packets can crash
    libreswan
  - Resolves: rhbz#2187171
* Tue Apr 04 2023 Daiki Ueno <[email protected]> - 4.9-2
  - Fix CVE-2023-23009: remote DoS via crafted TS payload with an
    incorrect selector length (rhbz#2173674)
* Wed Jan 04 2023 Daiki Ueno <[email protected]> - 4.9-1
  - Update to 4.9. Resolves: rhbz#2128669
  - Switch to using %autopatch as in Fedora

Files

/etc/ipsec.conf
/etc/ipsec.d
/etc/ipsec.d/policies
/etc/ipsec.d/policies/block
/etc/ipsec.d/policies/clear
/etc/ipsec.d/policies/clear-or-private
/etc/ipsec.d/policies/portexcludes.conf
/etc/ipsec.d/policies/private
/etc/ipsec.d/policies/private-or-clear
/etc/ipsec.secrets
/etc/logrotate.d/libreswan
/etc/pam.d/pluto
/etc/sysctl.d/50-libreswan.conf
/run/pluto
/usr/lib/.build-id
/usr/lib/.build-id/16
/usr/lib/.build-id/16/571c4159655ae1909184f4ad92025b06ba2b7b
/usr/lib/.build-id/2c
/usr/lib/.build-id/2c/6dfe9e52f01a773344062086a36feed65bec6a
/usr/lib/.build-id/32
/usr/lib/.build-id/32/2f8b91b8b67be53ebcc137d18a8159865fa85e
/usr/lib/.build-id/52
/usr/lib/.build-id/52/908b294fae5d1e9949722db2bb14a6c268b1c8
/usr/lib/.build-id/7b
/usr/lib/.build-id/7b/90216148bf32f38ed690ceb58451e845938aae
/usr/lib/.build-id/8f
/usr/lib/.build-id/8f/dce31f0fae780843b5a26f3fa8ee983b835f16
/usr/lib/.build-id/90
/usr/lib/.build-id/90/8750e38c9bbe09612f655992070c0e9a6f4fbb
/usr/lib/.build-id/a9
/usr/lib/.build-id/a9/975696a7f310f12ca88fefd4ed75da00ed05c9
/usr/lib/.build-id/ad
/usr/lib/.build-id/ad/b68a59cc34dba9321eb037d97d0d1fd3bc8a29
/usr/lib/.build-id/cc
/usr/lib/.build-id/cc/8a0604d1b24e7ea6c6a83ae65644ac9cd80513
/usr/lib/.build-id/d0
/usr/lib/.build-id/d0/566f91b145272f7f6bf2c4e68ac0727a3f4cb5
/usr/lib/.build-id/f1
/usr/lib/.build-id/f1/4c0847fa4285ca4db8fa16e09926c2d01baf65
/usr/lib/systemd/system/ipsec.service
/usr/lib/tmpfiles.d/libreswan.conf
/usr/libexec/ipsec
/usr/libexec/ipsec/_import_crl
/usr/libexec/ipsec/_plutorun
/usr/libexec/ipsec/_secretcensor
/usr/libexec/ipsec/_stackmanager
/usr/libexec/ipsec/_unbound-hook
/usr/libexec/ipsec/_updown
/usr/libexec/ipsec/_updown.xfrm
/usr/libexec/ipsec/addconn
/usr/libexec/ipsec/algparse
/usr/libexec/ipsec/auto
/usr/libexec/ipsec/barf
/usr/libexec/ipsec/cavp
/usr/libexec/ipsec/ecdsasigkey
/usr/libexec/ipsec/getpeercon_server
/usr/libexec/ipsec/letsencrypt
/usr/libexec/ipsec/look
/usr/libexec/ipsec/newhostkey
/usr/libexec/ipsec/pluto
/usr/libexec/ipsec/readwriteconf
/usr/libexec/ipsec/rsasigkey
/usr/libexec/ipsec/setup
/usr/libexec/ipsec/show
/usr/libexec/ipsec/showhostkey
/usr/libexec/ipsec/showroute
/usr/libexec/ipsec/verify
/usr/libexec/ipsec/whack
/usr/sbin/ipsec
/usr/share/doc/libreswan
/usr/share/doc/libreswan/CHANGES
/usr/share/doc/libreswan/CHANGES.freeswan.pluto
/usr/share/doc/libreswan/CHANGES.openswan
/usr/share/doc/libreswan/COPYING
/usr/share/doc/libreswan/CREDITS
/usr/share/doc/libreswan/CREDITS.freeswan
/usr/share/doc/libreswan/CREDITS.openswan
/usr/share/doc/libreswan/LICENSE
/usr/share/doc/libreswan/PlutoFlow.png
/usr/share/doc/libreswan/PlutoFlow.svg
/usr/share/doc/libreswan/ProgrammingConventions.txt
/usr/share/doc/libreswan/README.IANA-PEN
/usr/share/doc/libreswan/README.XAUTH
/usr/share/doc/libreswan/README.labeledipsec
/usr/share/doc/libreswan/README.md
/usr/share/doc/libreswan/README.nss
/usr/share/doc/libreswan/README.rfcs
/usr/share/doc/libreswan/README.x509
/usr/share/doc/libreswan/examples
/usr/share/doc/libreswan/examples/hub-spoke.conf
/usr/share/doc/libreswan/examples/ipv6.conf
/usr/share/doc/libreswan/examples/l2tp-cert.conf
/usr/share/doc/libreswan/examples/l2tp-psk.conf
/usr/share/doc/libreswan/examples/linux-linux.conf
/usr/share/doc/libreswan/examples/oe-authnull.conf
/usr/share/doc/libreswan/examples/oe-dnssec-client.conf
/usr/share/doc/libreswan/examples/oe-dnssec-server.conf
/usr/share/doc/libreswan/examples/oe-exclude-dns.conf
/usr/share/doc/libreswan/examples/oe-letsencrypt-README.txt
/usr/share/doc/libreswan/examples/oe-letsencrypt-client.conf
/usr/share/doc/libreswan/examples/oe-letsencrypt-server.conf
/usr/share/doc/libreswan/examples/oe-upgrade-authnull.conf
/usr/share/doc/libreswan/examples/sysctl.conf
/usr/share/doc/libreswan/examples/xauth.conf
/usr/share/doc/libreswan/l2tp-overhead.txt
/usr/share/doc/libreswan/nss-howto.txt
/usr/share/doc/libreswan/opportunistic-v1.historic
/usr/share/doc/libreswan/opportunistic-v1.historic/opportunism-spec.txt
/usr/share/doc/libreswan/opportunistic-v1.historic/opportunism.nr
/usr/share/doc/libreswan/pluto-internals.txt
/usr/share/doc/libreswan/win2k-notes.txt
/usr/share/doc/libreswan/windows-cross-compile.txt
/usr/share/man/man5/ipsec.conf.5.gz
/usr/share/man/man5/ipsec.secrets.5.gz
/usr/share/man/man8/ipsec.8.gz
/usr/share/man/man8/ipsec__import_crl.8.gz
/usr/share/man/man8/ipsec__plutorun.8.gz
/usr/share/man/man8/ipsec__secretcensor.8.gz
/usr/share/man/man8/ipsec__stackmanager.8.gz
/usr/share/man/man8/ipsec__unbound-hook.8.gz
/usr/share/man/man8/ipsec__updown.8.gz
/usr/share/man/man8/ipsec__updown.xfrm.8.gz
/usr/share/man/man8/ipsec_addconn.8.gz
/usr/share/man/man8/ipsec_auto.8.gz
/usr/share/man/man8/ipsec_barf.8.gz
/usr/share/man/man8/ipsec_checknss.8.gz
/usr/share/man/man8/ipsec_ecdsasigkey.8.gz
/usr/share/man/man8/ipsec_import.8.gz
/usr/share/man/man8/ipsec_initnss.8.gz
/usr/share/man/man8/ipsec_letsencrypt.8.gz
/usr/share/man/man8/ipsec_look.8.gz
/usr/share/man/man8/ipsec_newhostkey.8.gz
/usr/share/man/man8/ipsec_pluto.8.gz
/usr/share/man/man8/ipsec_readwriteconf.8.gz
/usr/share/man/man8/ipsec_rsasigkey.8.gz
/usr/share/man/man8/ipsec_setup.8.gz
/usr/share/man/man8/ipsec_show.8.gz
/usr/share/man/man8/ipsec_showhostkey.8.gz
/usr/share/man/man8/ipsec_showroute.8.gz
/usr/share/man/man8/ipsec_vendorid.8.gz
/usr/share/man/man8/ipsec_verify.8.gz
/usr/share/man/man8/ipsec_whack.8.gz
/usr/share/man/man8/pluto.8.gz
/var/lib/ipsec
/var/lib/ipsec/nss


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 26 08:33:48 2024