Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-38711HistoryAug 25, 2023 - 9:15 p.m.
CVE-2023-38711
2023-08-2521:15:08
Debian Security Bug Tracker
security-tracker.debian.org
9
libreswan
crash
restart
0.0004 Low
EPSS
Percentile
12.6%
An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6_ADDR receives an IDcr payload with ID_FQDN, a NULL pointer dereference causes a crash and restart of the pluto daemon. NOTE: the earliest affected version is 4.6.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libreswan | <=Â 4.10-2+deb12u1 | libreswan_4.10-2+deb12u1_all.deb |
| Debian | 11 | all | libreswan | <Â 4.3-1+deb11u4 | libreswan_4.3-1+deb11u4_all.deb |
| Debian | 10 | all | libreswan | <Â 3.27-6+deb10u1 | libreswan_3.27-6+deb10u1_all.deb |
| Debian | 999 | all | libreswan | <Â 4.12-1 | libreswan_4.12-1_all.deb |
| Debian | 13 | all | libreswan | <Â 4.12-1 | libreswan_4.12-1_all.deb |
Related
prion
prion
Null pointer dereference
2023-08-25 21:15:00
osv
osv
CVE-2023-38711
2023-08-25 21:15:08
Moderate: libreswan security update
2023-11-07 00:00:00
Moderate: libreswan security update
2023-11-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-38711 affecting package libreswan for versions less than 4.7-5
2023-09-13 02:10:38
CVE-2023-38711 affecting package libreswan for versions less than 4.7-6
2024-03-19 17:21:46
cve
cve
CVE-2023-38711
2023-08-25 21:15:08
veracode
veracode
Denial Of Service (DoS)
2023-08-21 05:59:47
redhatcve
redhatcve
CVE-2023-38711
2023-08-09 05:49:30
ubuntucve
ubuntucve
CVE-2023-38711
2023-08-25 00:00:00
alpinelinux
alpinelinux
CVE-2023-38711
2023-08-25 21:15:08
cvelist
cvelist
CVE-2023-38711
2023-08-25 00:00:00
openvas
openvas
Fedora: Security Advisory for libreswan (FEDORA-2023-ddd6e6b49b)
2023-08-20 00:00:00
Fedora: Security Advisory for libreswan (FEDORA-2023-dbc6d8a124)
2023-08-20 00:00:00
Mageia: Security Advisory (MGASA-2024-0085)
2024-04-05 00:00:00
oraclelinux
oraclelinux
libreswan security update
2023-11-11 00:00:00
libreswan security update
2023-11-17 00:00:00
nessus
nessus
Fedora 38 : libreswan (2023-ddd6e6b49b)
2023-08-20 00:00:00
Oracle Linux 8 : libreswan (ELSA-2023-7052)
2023-11-21 00:00:00
CentOS 9 : libreswan-4.12-1.el9
2024-02-29 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: libreswan-4.12-1.fc37
2023-08-20 00:45:09
[SECURITY] Fedora 38 Update: libreswan-4.12-1.fc38
2023-08-20 00:49:12
redhat
redhat
(RHSA-2023:6549) Moderate: libreswan security update
2023-11-07 06:08:30
(RHSA-2023:7052) Moderate: libreswan security update
2023-11-14 08:43:55
almalinux
almalinux
Moderate: libreswan security update
2023-11-07 00:00:00
Moderate: libreswan security update
2023-11-14 00:00:00
redos
redos
ROS-20230913-03
2023-09-13 00:00:00
mageia
mageia
Updated libreswan packages fix security vulnerabilities
2024-03-24 07:57:19