Lucene search
+L

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0216: libreswan (ALINUX3-SA-2022:0216)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0216 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-23094: Libreswan 4.2 through 4.5 allows...

7.5CVSS7.2AI score0.02699EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.25 views

Rocky Linux 8 : libreswan (RLSA-2022:0199)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:0199 advisory. - Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because...

7.5CVSS7.2AI score0.02699EPSS
Exploits1References3
OSV
OSV
added 2022/07/08 11:3 a.m.3 views

OESA-2022-1738 libreswan security update

Libreswan is an implementation of IKEv1 and IKEv2 for IPsec. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

7.5CVSS6.9AI score0.02699EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/03/11 12:0 a.m.31 views

AlmaLinux 8 : libreswan (ALSA-2022:0199)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2022:0199 advisory. - Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because...

7.5CVSS7.2AI score0.02699EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2022-0030)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02699EPSS
Exploits1References5
Mageia
Mageia
added 2022/01/25 12:13 p.m.42 views

Updated libreswan packages fix security vulnerability

Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because pluto/ikev1.c wrongly expects that a state object exists. CVE-2022-23094...

7.5CVSS5.4AI score0.02699EPSS
Exploits1References4
OSV
OSV
added 2022/01/25 12:13 p.m.10 views

MGASA-2022-0030 Updated libreswan packages fix security vulnerability

Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because pluto/ikev1.c wrongly expects that a state object exists. CVE-2022-23094...

7.5CVSS7.3AI score0.02699EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/01/25 12:0 a.m.38 views

RHEL 8 : libreswan (RHSA-2022:0239)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0239 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS7.3AI score0.02699EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/01/24 2:7 p.m.207 views

Important: Red Hat Security Advisory: libreswan security update

An update for libreswan is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS7.1AI score0.02699EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.34 views

RHEL 8 : libreswan (RHSA-2022:0199)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0199 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS7.3AI score0.02699EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.26 views

Oracle Linux 8 : libreswan (ELSA-2022-0199)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-0199 advisory. 4.4-4.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.4-4 - Resolves: rhbz2036902 rebuild to enable rpminspect 4.4-3 - Resolves: rhbz2036902: f...

7.5CVSS7.3AI score0.02699EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2022/01/19 7:33 p.m.42 views

Important: Red Hat Security Advisory: libreswan security update

An update for libreswan is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS7.1AI score0.02699EPSS
Exploits1References2
OSV
OSV
added 2022/01/19 7:11 p.m.20 views

ALSA-2022:0199 Important: libreswan security update

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...

7.5CVSS7.7AI score0.02699EPSS
Exploits1References1
OSV
OSV
added 2022/01/19 7:11 p.m.23 views

RLSA-2022:0199 Important: libreswan security update

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...

7.5CVSS7.7AI score0.02699EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2022/01/19 7:11 p.m.36 views

Important: libreswan security update

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...

7.5CVSS7.9AI score0.02699EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2022/01/16 12:0 a.m.42 views

Debian DSA-5048-1 : libreswan - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5048 advisory. It was discovered that the libreswan IPsec implementation could be forced into a crash/restart via a malformed IKEv1 packet, resulting in denial of service. For the stable...

7.5CVSS7.1AI score0.02699EPSS
Exploits1References5
Debian
Debian
added 2022/01/15 7:41 p.m.33 views

[SECURITY] [DSA 5048-1] libreswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5048-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 15, 2022 https://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.02699EPSS
Exploits1
CVE
CVE
added 2022/01/15 1:37 a.m.213 views

CVE-2022-23094

Summary (CVE-2022-23094) Libreswan versions 4.2–4.5 are affected by a denial-of-service issue triggered by a malformed IKEv1 packet, caused by pluto/ikev1.c assuming a state object exists. This can lead to a NULL pointer dereference and daemon crash. The issue is fixed in version 4.6. Impact and ...

7.5CVSS7AI score0.02699EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder