ALAS-2011-018


Amazon Linux AMI Security Advisory: ALAS-2011-18
Advisory Release Date: 2014-09-14 14:41 Pacific
Severity: Medium

Issue Overview:

A use-after-free flaw was found in the way Openswan's pluto IKE daemon used cryptographic helpers. A remote, authenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon. This issue only affected SMP (symmetric multiprocessing) systems that have the cryptographic helpers enabled.


Affected Packages:

openswan


Issue Correction:
Run yum update openswan to update your system.

New Packages:
i686:
    openswan-2.6.37-2.15.amzn1.i686
    openswan-doc-2.6.37-2.15.amzn1.i686
    openswan-debuginfo-2.6.37-2.15.amzn1.i686

src:
    openswan-2.6.37-2.15.amzn1.src

x86_64:
    openswan-2.6.37-2.15.amzn1.x86_64
    openswan-doc-2.6.37-2.15.amzn1.x86_64
    openswan-debuginfo-2.6.37-2.15.amzn1.x86_64