Amazon Linux AMI Security Advisory: ALAS-2014-303
Advisory Release Date: 2014-09-17 22:50 Pacific
A NULL pointer dereference flaw was discovered in the way Openswan's IKE daemon processed IKEv2 payloads. A remote attacker could send specially crafted IKEv2 payloads that, when processed, would lead to a denial of service (daemon crash), possibly causing existing VPN connections to be dropped. (CVE-2013-6466 )
Run yum update openswan to update your system.