6 matches found
Advisory ROSA-SA-2021-1887
Software: libreswan 3.25 OS: Cobalt 7.9 CVE-ID: CVE-2019-10155 CVE-Crit: LOW CVE-DESC: The Libreswan project has discovered a vulnerability in the handling of IKEv1 information exchange packets that are encrypted and integrity protected using the established IKE SA encryption and integrity keys,...
CentOS 8 : libreswan (CESA-2019:3391)
The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:3391 advisory. - libreswan: vulnerability in the processing of IKEv1 informational packets due to missing integrity check CVE-2019-10155 - libreswan: null-pointer...
Huawei EulerOS: Security Advisory for libreswan (EulerOS-SA-2020-1865)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Multiple vulnerabilities in Open Source Libreswan affect IBM Netezza Host Management
Summary Open Source Libreswan is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-12312 DESCRIPTION: Libreswan is vulnerable to a denial of service, caused by a NULL pointer dereference in the...
CVE-2019-12312
creationtimestamp| type| source ---|---|--- 2019-05-24 13:53:09+00:00| seen| https://t.me/cvemitreorg/282...
CVE-2019-12312
CVE-2019-12312 affects Libreswan 3.27, where an assertion failure in send_v2N_spi_response_from_state (ikev2_send.c) can be triggered by an IKEv2 SA_INIT followed by a bogus INFORMATIONAL exchange, causing a NULL pointer dereference and a restart of the pluto IKE daemon. The issue is documented a...