CVE-2015-3240

2015-11-0916:59:01

Debian Security Bug Tracker

security-tracker.debian.org

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.045 Low

EPSS

Percentile

92.6%

JSON

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet.

OSVersionArchitecturePackageVersionFilename
Debian12alllibreswan< 4.10-2+deb12u1libreswan_4.10-2+deb12u1_all.deb
Debian11alllibreswan< 4.3-1+deb11u4libreswan_4.3-1+deb11u4_all.deb
Debian999alllibreswan< 4.14-1libreswan_4.14-1_all.deb
Debian13alllibreswan< 4.14-1libreswan_4.14-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	libreswan	< 4.10-2+deb12u1	libreswan_4.10-2+deb12u1_all.deb
Debian	11	all	libreswan	< 4.3-1+deb11u4	libreswan_4.3-1+deb11u4_all.deb
Debian	999	all	libreswan	< 4.14-1	libreswan_4.14-1_all.deb
Debian	13	all	libreswan	< 4.14-1	libreswan_4.14-1_all.deb