寶德提供廠商一站式服務,讓客戶無后顧之憂,助客戶聚焦核心業務
簡介
An update for NetworkManager-libreswan is now available for openEuler-22.03-LTS-SP1,openEuler-24.03-LTS,openEuler-22.03-LTS-SP4,openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4
嚴重級別
High
主題
An update for NetworkManager-libreswan is now available for
openEuler-22.03-LTS-SP1,openEuler-24.03-LTS,openEuler-22.03-LTS-SP4,openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4.
openEuler Security has rated this update as having a security impact of
high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a
detailed severity rating, is available for each vulnerability from the
CVElink(s) in the References section.
描述
This package provides easy connections to IPsec VPNs using NetworkManager
and Libreswan.
Security Fix(es):
A flaw was found in the libreswan client plugin for NetworkManager
(NetkworkManager-libreswan), where it fails to properly sanitize the VPN
configuration from the local unprivileged user. In this configuration, composed
by a key-value format, the plugin fails to escape special characters, leading
the application to interpret values as keys. One of the most critical
parameters that could be abused by a malicious user is the `leftupdown`key.
This key takes an executable command as a value and is used to specify what
executes as a callback in NetworkManager-libreswan to retrieve configuration
settings back to NetworkManager. As NetworkManager uses Polkit to allow an
unprivileged user to control the system's network configuration, a malicious
actor could achieve local privilege escalation and potential code execution as
root in the targeted machine.(CVE-2024-9050)
影響組件
NetworkManager-libreswan
CVE
CVE-2024-9050
參考鏈接
https://nvd.nist.gov/vuln/detail/CVE-2024-9050
后續改善計劃
寶德計算機會持續跟進該漏洞的最新動態,請關注寶德計算機官網、官微公告有任何關于此漏洞修復的問題,可以通過以下方式聯系我們:
寶德計算機售后咨詢熱線:4008-870-872
寶德PSIRT郵箱:psirt@powerleadercom.cn
寶德計算機官網:http://www.powerleadercom.cn
寶德服務器
寶德自強
4008-870-872
點擊咨詢
