- Update to 4.14 for CVE-2024-2357
- Security, see https://libreswan.org/security/CVE-2024-2357
- x509: unpack IPv6 general names based on length
- pluto: TFC padding was not set for AEAD algorithms
- Include now fixed ipcheck
- Exclude hunkcheck broken on s390x
- Remove obsoleted patch capng patch