Lucene search

Alpine Linux Development TeamALPINE:CVE-2023-38711

HistoryAug 25, 2023 - 9:15 p.m.

CVE-2023-38711

2023-08-2521:15:08

Alpine Linux Development Team

security.alpinelinux.org

103

cve-2023-38711

null pointer dereference

crash

restart

pluto daemon

id_fqdn

libreswan

0.0004 Low

EPSS

Percentile

12.6%

JSON

An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6_ADDR receives an IDcr payload with ID_FQDN, a NULL pointer dereference causes a crash and restart of the pluto daemon. NOTE: the earliest affected version is 4.6.

OSVersionArchitecturePackageVersionFilename
Alpineedge-communitynoarchlibreswan< 4.12-r0UNKNOWN
Alpine3.19-communitynoarchlibreswan< 4.12-r0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	edge-community	noarch	libreswan	< 4.12-r0	UNKNOWN
Alpine	3.19-community	noarch	libreswan	< 4.12-r0	UNKNOWN

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for ALPINE:CVE-2023-38711