Описание
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libreswan | fixed | 4.9-2 | package | |
| libreswan | not-affected | buster | package |
Примечания
https://github.com/libreswan/libreswan/issues/954
https://libreswan.org/security/CVE-2023-23009/CVE-2023-23009.txt
EPSS
Связанные уязвимости
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
ELSA-2023-3095: libreswan security and bug fix update (MODERATE)
EPSS