Описание
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the libreswan responder SPI as its own initiator SPI, the pluto daemon state machine crashes. No remote code execution is possible.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libreswan | Out of support scope | ||
| Red Hat Enterprise Linux 7 | libreswan | Not affected | ||
| Red Hat Enterprise Linux 8 | libreswan | Fixed | RHSA-2023:2122 | 04.05.2023 |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | libreswan | Fixed | RHSA-2023:2126 | 04.05.2023 |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | libreswan | Fixed | RHSA-2023:2124 | 04.05.2023 |
| Red Hat Enterprise Linux 8.2 Telecommunications Update Service | libreswan | Fixed | RHSA-2023:2124 | 04.05.2023 |
| Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions | libreswan | Fixed | RHSA-2023:2124 | 04.05.2023 |
| Red Hat Enterprise Linux 8.4 Extended Update Support | libreswan | Fixed | RHSA-2023:2125 | 04.05.2023 |
| Red Hat Enterprise Linux 8.6 Extended Update Support | libreswan | Fixed | RHSA-2023:2123 | 04.05.2023 |
| Red Hat Enterprise Linux 9 | libreswan | Fixed | RHSA-2023:2120 | 04.05.2023 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
pluto in Libreswan before 4.11 allows a denial of service (responder S ...
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
EPSS
7.5 High
CVSS3