--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-bab8cabe2a
2018-06-02 21:04:47.032663
--------------------------------------------------------------------------------
Name : strongswan
Product : Fedora 27
Version : 5.6.2
Release : 6.fc27
URL :
http://www.strongswan.org/
Summary : An OpenSource IPsec-based VPN and TNC solution
Description :
The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key
exchange protocols in conjunction with the native NETKEY IPsec stack of the
Linux kernel.
--------------------------------------------------------------------------------
Update Information:
Resolves rhbz#1581868 CVE-2018-5388 strongswan: buffer underflow in
stroke_socket.c
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 24 2018 Paul Wouters <pwouters(a)redhat.com> - 5.6.2-6
- Resolves rhbz#1581868 CVE-2018-5388 strongswan: buffer underflow in stroke_socket.c
* Thu May 24 2018 Paul Wouters <pwouters(a)redhat.com> - 5.6.2-5
- Resolves rhbz#1574939 IKEv2 VPN connections fail to use DNS servers provided by the
server
- Resolves rhbz#1449875 Strongswan on epel built without the sql plugin but with the
sqlite plugin
* Sun May 20 2018 Mikhail Zabaluev <mikhail.zabaluev(a)gmail.com> - 5.6.2-3
- Move eap-radius, sqlite, and pkcs7 plugins out of tnc-imcvs, added package
sqlite (#1579945)
* Tue Mar 6 2018 Bj��rn Esser <besser82(a)fedoraproject.org> - 5.6.2-2
- Rebuilt for libjson-c.so.4 (json-c v0.13.1)
* Wed Feb 21 2018 Lubomir Rintel <lkundrak(a)v3.sk> - 5.6.2-1
- Updated to 5.6.2 (Dropped libnm-glib use in charon-nm)
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.6.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Fri Dec 22 2017 Paul Wouters <pwouters(a)redhat.com> - 5.6.1-1
- Updated to 5.6.1 (RSA-PSS support)
* Sun Dec 10 2017 Bj��rn Esser <besser82(a)fedoraproject.org> - 5.6.0-3
- Rebuilt for libjson-c.so.3
* Fri Dec 1 2017 Lubomir Rintel <lkundrak(a)v3.sk> - 5.6.0-2
- Fix the placement of charon-nm D-Bus policy
* Sat Sep 9 2017 Paul Wouters <pwouters(a)redhat.com> - 5.6.0-1
- Updated to 5.6.0
- Fixup configure arguments, enabled a bunch of new features
- Added new BuildRequires:
- Fixup Obsolete/Conflicts, use license macro
- Don't require autoconf/autotools for non-snapshots
- Remove macro overuse, remove fedora/rhel checks and sysvinit support
- Make listings/grouping of all plugins/libs to reduce file listing
* Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.5.3-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.5.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Mon Jun 12 2017 Paul Wouters <pwouters(a)redhat.com> - 5.5.3-1
- Updated to 5.5.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1581868 - CVE-2018-5388 strongswan: buffer underflow in stroke_socket.c
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1581868
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-bab8cabe2a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------