[Announce] openswan 2.4.15 released that fixes CVE-2009-2185
Paul Wouters
paul at xelerance.com
Thu Jun 25 01:29:52 EDT 2009
We have just released openswan 2.4.15. This is a security release that
addresses CVE-2009-2185.
http://www.vupen.com/english/advisories/2009/1639
The new version can be obtained at:
http://www.openswan.org/download/openswan-2.4.15.tar.gz
http://www.openswan.org/download/openswan-2.4.15.tar.gz.asc
These fixes are also included in openswan 2.6.22, which was released a few
days ago.
You can find the seperate patches for just this issue for openswan-2.4.x
and openswan 2.6.x at:
http://www.openswan.org/download/CVE-2009-2185/
Note that the 2.4.x patch will probably also work on earlier versions of
Openswan, though we strongly recommend no one runs those anymore.
Regards,
Paul
More information about the Announce
mailing list