Updated openswan packages that resolve several issues are now available.
Openswan is a free implementation of IPsec & IKE for Linux. IPsec stands
for Internet Protocol Security, and uses strong cryptography to provide
both authentication and encryption services. These services allow you to
build secure tunnels through untrusted networks. Everything passing through
the untrusted net is encrypted by the ipsec gateway machine and decrypted
by the gateway at the other end of the tunnel. The resulting tunnel is a
virtual private network, or VPN.
This package contains the daemons and userland tools for setting up
Openswan on Red Hat Enterprise Linux 5.
Openswan provides an alternative to the ipsec-tools package, and includes
additional functionality that users may find useful. Users of the
ipsec-tools package may wish to evaluate Openswan.
These updated openswan packages provide fixes for the following bugs:
* openswan and strongswan failed to interoperate
* openswan was supposed to negotiate a CCM algorithm and wasn't
* openswan was not accepting null esp auth algorithm
* openswan was segfaulting when phase2alg=null
* openswan IKEv2 daemon was crashing when interoperating with racoon2
* openswan was not deleting expired SA's
All users of openswan are advised to upgrade to these updated packages,
which resolve these issues.
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188
| Red Hat Enterprise Linux (v. 5 server) |
|
| SRPMS: |
| openswan-2.6.14-1.el5_2.1.src.rpm |
45a707a090418a2cfa58ea812a5c3216 |
| |
| IA-32: |
| openswan-2.6.14-1.el5_2.1.i386.rpm |
5376e16f41c11ba761774f342862a985 |
| openswan-doc-2.6.14-1.el5_2.1.i386.rpm |
18afe1d43470b501b854fe6de9dca082 |
| |
| IA-64: |
| openswan-2.6.14-1.el5_2.1.ia64.rpm |
e576686e4f2f602a23b20a0a900d3290 |
| openswan-doc-2.6.14-1.el5_2.1.ia64.rpm |
bfbf62c7e375876e8eb0ed2f4256f961 |
| |
| PPC: |
| openswan-2.6.14-1.el5_2.1.ppc.rpm |
4767df5310685825adfb52394ba05743 |
| openswan-doc-2.6.14-1.el5_2.1.ppc.rpm |
a29afecc110dc3a7bd38c6157a2827ea |
| |
| s390x: |
| openswan-2.6.14-1.el5_2.1.s390x.rpm |
c3af0a254f3d544d383626caee773e93 |
| openswan-doc-2.6.14-1.el5_2.1.s390x.rpm |
ad3d5e070398d35a19b94f53975b7fb6 |
| |
| x86_64: |
| openswan-2.6.14-1.el5_2.1.x86_64.rpm |
8ca5e1d9a5eb762cb62b3b044b839b63 |
| openswan-doc-2.6.14-1.el5_2.1.x86_64.rpm |
c00aa19188f1b6c2171da5e86c979499 |
| |
| Red Hat Enterprise Linux Desktop (v. 5 client) |
|
| SRPMS: |
| openswan-2.6.14-1.el5_2.1.src.rpm |
45a707a090418a2cfa58ea812a5c3216 |
| |
| IA-32: |
| openswan-2.6.14-1.el5_2.1.i386.rpm |
5376e16f41c11ba761774f342862a985 |
| openswan-doc-2.6.14-1.el5_2.1.i386.rpm |
18afe1d43470b501b854fe6de9dca082 |
| |
| x86_64: |
| openswan-2.6.14-1.el5_2.1.x86_64.rpm |
8ca5e1d9a5eb762cb62b3b044b839b63 |
| openswan-doc-2.6.14-1.el5_2.1.x86_64.rpm |
c00aa19188f1b6c2171da5e86c979499 |
| |
(The unlinked packages above are only available from the Red Hat Network)
|
450125 - [IPv6-DoD] openswan and strongswan fail to interoperate with IKEv2
450126 - IPV6DOD: openswan should negotiate CCM algorithm.
450127 - [IPv6-DoD] openswan doesn't accept null esp auth alg
450128 - openswan logging segfault when phase2alg=null
450129 - [IPv6-DoD] openswan IKEv2 crashes when interoperating with racoon2
450334 - openswan doesn't delete expired SA's
openswan bug fix update