Lucene search

K
redhatcveRedhat.comRH:CVE-2020-1763
HistoryMay 12, 2020 - 10:36 a.m.

CVE-2020-1763

2020-05-1210:36:56
redhat.com
access.redhat.com
16
libreswan
buffer read
pluto daemon
crash
system security
red hat

EPSS

0.006

Percentile

79.0%

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash.

Mitigation

Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.