Lucene search
K

460 matches found

Fedora
Fedora
added 2019/06/13 1:15 a.m.31 views

[SECURITY] Fedora 30 Update: libreswan-3.29-1.fc30

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

7.5CVSS1.3AI score0.02748EPSS
Exploits1
Veracode
Veracode
added 2019/01/15 8:53 a.m.28 views

Remote Code Execution (RCE)

openswan is vulnerable to remote code execution RCE attacks. The vulnerability exists through a buffer overflow issue in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto...

6.8CVSS7.9AI score0.02427EPSS
Exploits0References11Affected Software1
UbuntuCve
UbuntuCve
added 2018/09/26 9:29 p.m.46 views

CVE-2018-15836

In verifysignedhash in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2...

7.5CVSS7.1AI score0.01493EPSS
Exploits0References3
Prion
Prion
added 2018/09/26 9:29 p.m.14 views

Design/Logic Flaw

In verifysignedhash in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2...

5CVSS7.5AI score0.01493EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2018/09/26 9:29 p.m.17 views

CVE-2018-15836

In verifysignedhash in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2...

7.5CVSS6.9AI score
Exploits0References3
Cvelist
Cvelist
added 2018/09/26 9:0 p.m.28 views

CVE-2018-15836

In verifysignedhash in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2...

7.5AI score0.01493EPSS
Exploits0References3
CVE
CVE
added 2018/09/26 9:0 p.m.51 views

CVE-2018-15836

CVE-2018-15836 affects Openswan before 2.6.50.1. In verify_signed_hash() (lib/liboswkeys/signatures.c), the RSA PKCS#1 v1.5 padding value is not verified during signature verification, enabling signature forgery when small public exponents are used. IKEv2 signature verification is affected when R...

7.5CVSS7.5AI score0.01493EPSS
Exploits0References3Affected Software1
Fedora
Fedora
added 2016/04/12 9:45 a.m.58 views

[SECURITY] Fedora 24 Update: libreswan-3.17-1.fc24

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

7.5CVSS1.3AI score0.02558EPSS
Exploits0
CNVD
CNVD
added 2015/11/13 12:0 a.m.5 views

libreswan Denial of Service Vulnerability (CNVD-2015-07581)

libreswan is a VPN based on IPSEC and IKE security protocol implementation of free open source software . A denial of service vulnerability exists in libreswan versions prior to 3.15 and Openswan versions prior to 2.6.45. Allows remote attackers to cause a denial of service via a DH g ^ x zero...

4.3CVSS7.5AI score0.02765EPSS
Exploits0References1
NVD
NVD
added 2015/11/09 4:59 p.m.17 views

CVE-2015-3240

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service assertion failure and daemon restart via a zero DH g^x value in a KE payload in a IKE packet...

4.3CVSS7.3AI score0.02765EPSS
Exploits0References7
Prion
Prion
added 2015/11/09 4:59 p.m.19 views

Code injection

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service assertion failure and daemon restart via a zero DH g^x value in a KE payload in a IKE packet...

4.3CVSS6.9AI score0.02765EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2015/11/09 4:59 p.m.13 views

CVE-2015-3240

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service assertion failure and daemon restart via a zero DH g^x value in a KE payload in a IKE packet...

4.3CVSS7.1AI score0.02765EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/09 4:0 p.m.25 views

CVE-2015-3240

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service assertion failure and daemon restart via a zero DH g^x value in a KE payload in a IKE packet...

6.2AI score0.02765EPSS
Exploits0References7
CVE
CVE
added 2015/11/09 4:0 p.m.80 views

CVE-2015-3240

CVE-2015-3240 affects Libreswan (pluto IKE daemon) and OpenSwan where, when built with NSS, an attacker can trigger a denial-of-service by sending an IKE packet with a zero DH g^x value in a KE payload. Affected: Libreswan up to and including 3.15 and OpenSwan up to 2.6.45. Public advisories desc...

4.3CVSS6.4AI score0.02765EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linux
added 2015/11/04 8:37 a.m.41 views

Moderate: Red Hat Security Advisory: libreswan security and enhancement update

Updated libreswan packages that fix one security issue, several bugs, and add several enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which give...

4.3CVSS7.2AI score0.02765EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2015/11/03 12:0 a.m.4 views

PT-2015-6117 · Libreswan +4 · Libreswan +4

Name of the Vulnerable Software and Affected Versions: libreswan versions prior to 3.15 Openswan versions prior to 2.6.45 Description: The issue allows remote attackers to cause a denial of service, resulting in an assertion failure and daemon restart. This occurs when a zero DH g^x value is...

4.3CVSS7.5AI score0.02765EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.12 views

Oracle: Security Advisory (ELSA-2009-1138)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.6AI score0.02372EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.22 views

Oracle: Security Advisory (ELSA-2009-0402)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.7AI score0.03205EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.22 views

Oracle: Security Advisory (ELSA-2011-1422)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS6.4AI score0.02086EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.15 views

Oracle: Security Advisory (ELSA-2011-1356)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.02273EPSS
Exploits0References2
Rows per page
Query Builder