Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2024-3652
HistoryApr 11, 2024 - 2:15 a.m.

CVE-2024-3652

2024-04-1102:15:47
Debian Security Bug Tracker
security-tracker.debian.org
5
libreswan
ikev1
aes-gmac

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan’s default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%