Lucene search
+L

131 matches found

UbuntuCve
UbuntuCve
added 2023/05/17 12:0 a.m.39 views

CVE-2023-2295

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS7.3AI score0.01581EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.35 views

Oracle Linux 9 : libreswan (ELSA-2023-3148)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-3148 advisory. - Fix CVE-2023-30570:Malicious IKEv1 Aggressive Mode packets can crash libreswan Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS6.8AI score0.01581EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/05/16 7:43 p.m.7 views

libreswan: Regression of CVE-2023-30570 fixes in the Red Hat Enterprise Linux

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01581EPSS
Exploits0References4
Veracode
Veracode
added 2023/05/14 1:47 p.m.19 views

Null Pointer Dereference

libreswan is vulnerable to Null Pointer Dereference. Due to the vulnerability an incorrect aggressive mode interaction causes the pluto daemon to crash which also causes the machine to crash...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/05/13 12:0 a.m.21 views

Fedora 37 : libreswan (2023-60faf77aca)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-60faf77aca advisory. Update to 4.11 for CVE-2023-30570 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.2 views

PT-2023-18792 · Libreswan +4 · Libreswan +4

Name of the Vulnerable Software and Affected Versions: libreswan affected versions not specified Description: A security issue was found in the libreswan library. This occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not...

7.5CVSS7.4AI score0.01581EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2023/05/05 8:51 a.m.33 views

CVE-2023-2295

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS7AI score0.01581EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2023/05/05 12:0 a.m.27 views

libreswan security update

4.6-3.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.6-3.1 - Resolves: rhbz2187170 fix handling of IKEv1 aggressive mode packets...

7.5CVSS6.9AI score0.01175EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/05/05 12:0 a.m.29 views

libreswan security update

4.5-1.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.5-1.1 - Resolves: rhbz2187178 fix handling of IKEv1 aggressive mode packets...

7.5CVSS6.9AI score0.01175EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/04 1:21 p.m.7 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:20 p.m.5 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:18 p.m.6 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:18 p.m.7 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:8 p.m.6 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:3 p.m.11 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.18 views

RHEL 8 : libreswan (RHSA-2023:2122)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2122 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.21 views

RHEL 8 : libreswan (RHSA-2023:2123)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2123 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.19 views

RHEL 8 : libreswan (RHSA-2023:2125)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2125 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.26 views

RHEL 8 : libreswan (RHSA-2023:2124)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2124 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/05/03 12:0 a.m.3 views

PT-2023-22795 · Libreswan +3 · Libreswan +3

Name of the Vulnerable Software and Affected Versions: Libreswan versions 3.28 through 4.10 Description: The issue allows for a denial of service, causing the daemon to crash due to responder SPI mishandling. This can be triggered via unauthenticated IKEv1 Aggressive Mode packets. Recommendations...

7.5CVSS7.2AI score0.01581EPSS
Exploits0References34
Rows per page
Query Builder