Security Advisory Important: openswan security update

Advisory: RHSA-2009:1138-1
Type: Security Advisory
Severity: Important
Issued on: 2009-07-02
Last updated on: 2009-07-02
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.3.z server)
OVAL: com.redhat.rhsa-20091138.xml
CVEs (cve.mitre.org): CVE-2009-2185

Details

Updated openswan packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 5.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Openswan is a free implementation of Internet Protocol Security (IPsec)
and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide
both authentication and encryption services. These services allow you to
build secure tunnels through untrusted networks. Everything passing through
the untrusted network is encrypted by the IPsec gateway machine, and
decrypted by the gateway at the other end of the tunnel. The resulting
tunnel is a virtual private network (VPN).

Multiple insufficient input validation flaws were found in the way
Openswan's pluto IKE daemon processed some fields of X.509 certificates. A
remote attacker could provide a specially-crafted X.509 certificate that
would crash the pluto daemon. (CVE-2009-2185)

All users of openswan are advised to upgrade to these updated packages,
which contain a backported patch to correct these issues. After installing
this update, the ipsec service will be restarted automatically.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux (v. 5 server)
SRPMS:
openswan-2.6.14-1.el5_3.3.src.rpm
File outdated by:  RHEA-2009:1350		     7f3836d89c0d24f1431be08188757c16
 
IA-32:
openswan-2.6.14-1.el5_3.3.i386.rpm
File outdated by:  RHEA-2009:1350		     916a8a8620148ef16003b7f02ff68d07
openswan-doc-2.6.14-1.el5_3.3.i386.rpm
File outdated by:  RHEA-2009:1350		     6dbc3767e4e50ff856782b8d62bb3c84
 
IA-64:
openswan-2.6.14-1.el5_3.3.ia64.rpm
File outdated by:  RHEA-2009:1350		     0bcf022b9482c92d6a1b3bd703e74722
openswan-doc-2.6.14-1.el5_3.3.ia64.rpm
File outdated by:  RHEA-2009:1350		     20f14c43bdd99a22cd3cee05018b8ee1
 
PPC:
openswan-2.6.14-1.el5_3.3.ppc.rpm
File outdated by:  RHEA-2009:1350		     c0484169be2aead2cdfb98e2654f993f
openswan-doc-2.6.14-1.el5_3.3.ppc.rpm
File outdated by:  RHEA-2009:1350		     bf6503fc3efe326cc61c9fc118be7975
 
s390x:
openswan-2.6.14-1.el5_3.3.s390x.rpm
File outdated by:  RHEA-2009:1350		     4c892d3a9215bd720a2f4c986cc80087
openswan-doc-2.6.14-1.el5_3.3.s390x.rpm
File outdated by:  RHEA-2009:1350		     6b59a4e4e7cb3a7950f5eb602e534d42
 
x86_64:
openswan-2.6.14-1.el5_3.3.x86_64.rpm
File outdated by:  RHEA-2009:1350		     784d3cf7b9f6d56efa131fd02df44485
openswan-doc-2.6.14-1.el5_3.3.x86_64.rpm
File outdated by:  RHEA-2009:1350		     a93d9a69b3416745a20027ed938235bb
 
Red Hat Enterprise Linux Desktop (v. 5 client)
SRPMS:
openswan-2.6.14-1.el5_3.3.src.rpm
File outdated by:  RHEA-2009:1350		     7f3836d89c0d24f1431be08188757c16
 
IA-32:
openswan-2.6.14-1.el5_3.3.i386.rpm
File outdated by:  RHEA-2009:1350		     916a8a8620148ef16003b7f02ff68d07
openswan-doc-2.6.14-1.el5_3.3.i386.rpm
File outdated by:  RHEA-2009:1350		     6dbc3767e4e50ff856782b8d62bb3c84
 
x86_64:
openswan-2.6.14-1.el5_3.3.x86_64.rpm
File outdated by:  RHEA-2009:1350		     784d3cf7b9f6d56efa131fd02df44485
openswan-doc-2.6.14-1.el5_3.3.x86_64.rpm
File outdated by:  RHEA-2009:1350		     a93d9a69b3416745a20027ed938235bb
 
Red Hat Enterprise Linux EUS (v. 5.3.z server)
SRPMS:
openswan-2.6.14-1.el5_3.3.src.rpm
File outdated by:  RHEA-2009:1350		     7f3836d89c0d24f1431be08188757c16
 
IA-32:
openswan-2.6.14-1.el5_3.3.i386.rpm     916a8a8620148ef16003b7f02ff68d07
openswan-doc-2.6.14-1.el5_3.3.i386.rpm     6dbc3767e4e50ff856782b8d62bb3c84
 
IA-64:
openswan-2.6.14-1.el5_3.3.ia64.rpm     0bcf022b9482c92d6a1b3bd703e74722
openswan-doc-2.6.14-1.el5_3.3.ia64.rpm     20f14c43bdd99a22cd3cee05018b8ee1
 
PPC:
openswan-2.6.14-1.el5_3.3.ppc.rpm     c0484169be2aead2cdfb98e2654f993f
openswan-doc-2.6.14-1.el5_3.3.ppc.rpm     bf6503fc3efe326cc61c9fc118be7975
 
s390x:
openswan-2.6.14-1.el5_3.3.s390x.rpm     4c892d3a9215bd720a2f4c986cc80087
openswan-doc-2.6.14-1.el5_3.3.s390x.rpm     6b59a4e4e7cb3a7950f5eb602e534d42
 
x86_64:
openswan-2.6.14-1.el5_3.3.x86_64.rpm     784d3cf7b9f6d56efa131fd02df44485
openswan-doc-2.6.14-1.el5_3.3.x86_64.rpm     a93d9a69b3416745a20027ed938235bb
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

507362 - CVE-2009-2185 Openswan ASN.1 parser vulnerability


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2185
http://www.redhat.com/security/updates/classification/#important

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/