CPE-AD2DF70E-85D0-4663-9820-CC8CB8EB2523 Detail

CPE Details

libreswan 4.9-1.el9

Vendor

libreswan

Product

libreswan

Version

4.9-1.el9

Created

2023-11-01
15h06 +00:00

Modified

2023-11-01
15h06 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:libreswan:libreswan:4.9-1.el9:::::::*

Informations

Vendor

libreswan

Product

libreswan

Version

4.9-1.el9

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-38710	2023-08-24 22h00 +00:00	An issue was discovered in Libreswan before 4.12. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID number of 0 or 1, an error notify INVALID_SPI is sent back. The notify payload's protocol ID is copied from the incoming packet, but the code that verifies outgoing packets fails an assertion that the protocol ID must be ESP (2) or AH(3) and causes the pluto daemon to crash and restart. NOTE: the earliest affected version is 3.20.	6.5	Medium
CVE-2023-38711	2023-08-24 22h00 +00:00	An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6_ADDR receives an IDcr payload with ID_FQDN, a NULL pointer dereference causes a crash and restart of the pluto daemon. NOTE: the earliest affected version is 4.6.	6.5	Medium
CVE-2023-38712	2023-08-24 22h00 +00:00	An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.	6.5	Medium
CVE-2023-30570	2023-05-27 22h00 +00:00	pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.	7.5	High
CVE-2023-2295	2023-05-17 00h00 +00:00	A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the libreswan responder SPI as its own initiator SPI, the pluto daemon state machine crashes. No remote code execution is possible. This CVE exists because of a CVE-2023-30570 security regression for libreswan package in Red Hat Enterprise Linux 8.8 and Red Hat Enterprise Linux 9.2.	7.5	High

libreswan 4.9-1.el9

CPE Details

CPE Name: cpe:2.3:a:libreswan:libreswan:4.9-1.el9:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:libreswan:libreswan:4.9-1.el9:::::::*