[ol8_appstream] libreswan-4.9-3.0.1.el8_8.x86_64

Name:	libreswan
Version:	4.9
Release:	3.0.1.el8_8
Architecture:	x86_64
Group:	Unspecified
Size:	5312917
License:	GPLv2
RPM:	libreswan-4.9-3.0.1.el8_8.x86_64.rpm
Source RPM:	libreswan-4.9-3.0.1.el8_8.src.rpm
Build Date:	Fri May 19 2023
Build Host:	build-ol8-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://libreswan.org/
Summary:	IPsec implementation with IKEv1 and IKEv2 keying protocols
Description:	Libreswan is a free implementation of IKE/IPsec for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Libreswan. Libreswan also supports IKEv2 (RFC7296) and Secure Labeling Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Changelog (Show File list) (Show related packages)

Thu May 18 2023 EL Errata <el-errata_ww@oracle.com> - 4.9-3.0.1
```
- Add libreswan-oracle.patch to detect Oracle Linux distro
```

Fri May 05 2023 Sahana Prasad <sahana@redhat.com> - 4.9-3

- Fix CVE-2023-30570: Malicious IKEv1 Aggressive Mode packets can crash
  libreswan
- Resolves: rhbz#2187179

Tue Apr 25 2023 Daiki Ueno <dueno@redhat.com> - 4.9-2.2
```
- Update libreswan-4.9-2176248-authby-rsasig.patch
```

Fri Apr 14 2023 Daiki Ueno <dueno@redhat.com> - 4.9-2.1

- Resolves: rhbz#2187647 authby=rsasig fails in FIPS policy

Tue Apr 04 2023 Daiki Ueno <dueno@redhat.com> - 4.9-2

- Fix CVE-2023-23009: remote DoS via crafted TS payload with an
  incorrect selector length (rhbz#2186127)

Mon Jan 09 2023 Daiki Ueno <dueno@redhat.com> - 4.9-1

- Resolves: rhbz#2128672 Rebase libreswan to 4.9
- Remove libreswan-4.4-ikev1-disable-diagnostics.patch no longer necessary

Thu Jan 13 2022 Daiki Ueno <dueno@redhat.com> - 4.5-1

- Resolves: rhbz#2017352 Rebase libreswan to 4.5
- Resolves: rhbz#2036903 ikev1: disable diagnostics logging on receiving malformed packets

Wed May 26 2021 Daiki Ueno <dueno@redhat.com> - 4.4-1

- Resolves: rhbz#1958968 Rebase libreswan to 4.4
- Resolves: rhbz#1954423 Libreswan: TS_UNACCEPTABLE on multiple connections between the same peers

Thu Mar 04 2021 Paul Wouters <pwouters@redhat.com> - 4.3-3

- Resolves: rhbz#1933064 - IKEv2 support for Labeled IPsec
- Resolves: rhbz#1935150 RFE: Support IKE and ESP over TCP: RFC 8229
- Resolves: rhbz#1935339 virtual_private setting is missing in the default config

Sun Feb 21 2021 Paul Wouters <pwouters@redhat.com> - 4.3-1

- Resolves: rhbz#1025061 - IKEv2 support for Labeled IPsec [update]