[Swan] Cannot compile Libreswan 3.14 and newer on CentOS 5

Paul Wouters paul at nohats.ca
Thu Sep 24 20:39:38 UTC 2015


On Thu, 24 Sep 2015, Tomas France wrote:

> Subject: Re: [Swan] Cannot compile Libreswan 3.14 and newer on CentOS 5
> 
> OK, thanks for the information! I am actually happy with version 3.13, it's
> quite a new version still, mainly compared to OpenSwan where on CentOS 5 I
> could not complite anything newer than 2.6.38 from 2012.
>
> What worries me is the security problem CVE-2015-3240 and the patch is for
> 3.14 version only. Is there a way to fix the problem in version 3.13, or is
> it safe to use as-is?

We publish a stand-alone patch for that issue at:

https://libreswan.org/security/CVE-2015-3240/

It might require some tweaking to apply to 3.13.

Paul


More information about the Swan mailing list