Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-2357HistoryMar 11, 2024 - 8:15 p.m.
CVE-2024-2357
2024-03-1120:15:07
Debian Security Bug Tracker
security-tracker.debian.org
14
libreswan project
ikev2 retransmit
presharedkeys
denial of service
unix
The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libreswan | <= 4.10-2+deb12u1 | libreswan_4.10-2+deb12u1_all.deb |
| Debian | 11 | all | libreswan | <= 4.3-1+deb11u4 | libreswan_4.3-1+deb11u4_all.deb |
| Debian | 10 | all | libreswan | <= 3.27-6+deb10u1 | libreswan_3.27-6+deb10u1_all.deb |
| Debian | 999 | all | libreswan | < 4.14-1 | libreswan_4.14-1_all.deb |
| Debian | 13 | all | libreswan | < 4.14-1 | libreswan_4.14-1_all.deb |
Related
fedora
fedora
[SECURITY] Fedora 38 Update: libreswan-4.14-1.fc38
2024-03-21 01:28:26
[SECURITY] Fedora 40 Update: libreswan-4.14-1.fc40
2024-03-23 00:51:20
[SECURITY] Fedora 39 Update: libreswan-4.14-1.fc39
2024-03-21 01:13:33
nessus
nessus
Amazon Linux 2023 : libreswan (ALAS2023-2024-587)
2024-04-17 00:00:00
RHEL 9 : libreswan (RHSA-2024:2033)
2024-04-24 00:00:00
AlmaLinux 8 : libreswan (ALSA-2024:1998)
2024-04-29 00:00:00
oraclelinux
oraclelinux
libreswan security update
2024-04-23 00:00:00
libreswan security and bug fix update
2024-04-24 00:00:00
libreswan security update
2024-05-07 00:00:00
redhat
redhat
(RHSA-2024:2081) Moderate: libreswan security update
2024-04-29 01:07:45
(RHSA-2024:2082) Moderate: libreswan security update
2024-04-29 01:07:46
(RHSA-2024:2565) Moderate: libreswan security update
2024-04-30 11:38:53
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0113)
2024-04-09 00:00:00
Fedora: Security Advisory for libreswan (FEDORA-2024-92f0c71a01)
2024-03-25 00:00:00
Fedora: Security Advisory for libreswan (FEDORA-2024-1439ec2069)
2024-03-25 00:00:00
osv
osv
Moderate: libreswan security and bug fix update
2024-04-24 00:00:00
Moderate: libreswan security update
2024-05-06 13:04:21
Moderate: libreswan security update
2024-04-30 00:00:00
rocky
rocky
libreswan security update
2024-05-06 13:04:21
libreswan bug fix and enhancement update
2024-06-14 13:59:30
libreswan security update
2024-05-10 14:32:42
cve
cve
CVE-2024-2357
2024-03-11 20:15:07
ubuntucve
ubuntucve
CVE-2024-2357
2024-03-11 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2024-2357
2024-03-11 20:15:07
redhatcve
redhatcve
CVE-2024-2357
2024-03-14 16:45:16
almalinux
almalinux
Moderate: libreswan security update
2024-04-23 00:00:00
Moderate: libreswan security and bug fix update
2024-04-24 00:00:00
Moderate: libreswan security update
2024-04-30 00:00:00
mageia
mageia
Updated libreswan packages fix security vulnerabilities
2024-04-07 01:16:44
alpinelinux
alpinelinux
CVE-2024-2357
2024-03-11 20:15:07
veracode
veracode
Denial Of Service (DOS)
2024-03-16 23:59:27
redos
redos
ROS-20240423-04
2024-04-23 00:00:00