Libreswan 3.16 might allow remote attackers to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform.Referenceshttp://lists.fedoraproject.org/pipermail/package-announce/2016-April/182130.htmlhttp://www.securityfocus.com/bid/87295http://download.libreswan.org/CHANGEShttps://libreswan.org/security/CVE-2016-3071/CVE-2016-3071.txthttp://lists.fedoraproject.org/pipermail/package-announce/2016-April/182050.html
