Описание
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
A flaw was found in the Libreswan package. A crafted TS payload with an incorrect selector length may allow a remote attacker to cause a denial of service.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | libreswan | Not affected | ||
| Red Hat Enterprise Linux 8 | libreswan | Fixed | RHSA-2023:3095 | 16.05.2023 |
| Red Hat Enterprise Linux 9 | libreswan | Fixed | RHSA-2023:2633 | 09.05.2023 |
| Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | libreswan | Fixed | RHSA-2024:10594 | 02.12.2024 |
| Red Hat OpenShift Container Platform 4.15 | libreswan | Fixed | RHBA-2024:11565 | 02.01.2025 |
| Red Hat OpenShift Container Platform 4.16 | libreswan | Fixed | RHBA-2024:11505 | 02.01.2025 |
| Red Hat OpenShift Container Platform 4.17 | libreswan | Fixed | RHBA-2024:11525 | 02.01.2025 |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
Libreswan 4.9 allows remote attackers to cause a denial of service (as ...
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
ELSA-2023-3095: libreswan security and bug fix update (MODERATE)
EPSS
6.5 Medium
CVSS3