Test ID:	1.3.6.1.4.1.25623.1.0.827596
Category:	Fedora Local Security Checks
Title:	Fedora: Security Advisory for libreswan (FEDORA-2023-a2348480cb)
Summary:	The remote host is missing an update for the 'libreswan'; package(s) announced via the FEDORA-2023-a2348480cb advisory.
Description:	Summary: The remote host is missing an update for the 'libreswan' package(s) announced via the FEDORA-2023-a2348480cb advisory. Vulnerability Insight: Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Libreswan. Libreswan also supports IKEv2 (RFC7296) and Secure Labeling Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04 Affected Software/OS: 'libreswan' package(s) on Fedora 38. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-23009 Debian Security Information: DSA-5368 (Google Search) https://www.debian.org/security/2023/dsa-5368 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CSMYJH7MC2FZGCY5NH5AXULO3ISXIHOF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MFOIQX2LRL43P3GJT33DE7G7COHNXDN/ https://github.com/libreswan/libreswan/issues/954
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.