RockyLinux 8 : libreswan (RLSA-2023:7052)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:7052 advisory. libreswan: Invalid IKEv2 REKEY proposal causes restart CVE-2023-38710 libreswan: Invalid IKEv1 Quick Mode ID causes restart CVE-2023-38711 libreswan:...

libreswan security update

An update is available for libreswan. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the...

Unity Linux 20.1050e / 20.1070e Security Update: NetworkManager-libreswan (UTSA-2026-016510)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016510 advisory. A flaw was found in the libreswan client plugin for NetworkManager NetkworkManager-libreswan, where it fails to properly sanitize the VPN configuration from the loca...

MiracleLinux 9 : NetworkManager-libreswan-1.2.22-4.el9_5 (AXSA:2024-9430:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9430:08 advisory. NetworkManager-libreswan: Local privilege escalation via leftupdown CVE-2024-9050 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.9-4.el9 (AXSA:2023-5959:05)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5959:05 advisory. libreswan: Regression of CVE-2023-30570 fixes in the Red Hat Enterprise Linux CVE-2023-2295 Tenable has extracted the preceding description block directly fr...

MiracleLinux 8 : libreswan-4.12-2.el8_9.2.ML.1 (AXSA:2024-7724:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7724:02 advisory. libreswan: Missing PreSharedKey for connection can cause crash CVE-2024-2357 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.9-2.el9 (AXSA:2023-5981:06)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5981:06 advisory. libreswan: remote DoS via crafted TS payload with an incorrect selector length CVE-2023-23009 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : libreswan-4.12-1.el9_3.1.ML.1 (AXSA:2024-7719:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7719:01 advisory. libreswan: Missing PreSharedKey for connection can cause crash CVE-2024-2357 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.5-1.el8.1 (AXSA:2023-5324:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5324:01 advisory. libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan CVE-2023-30570 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.4-4.el8 (AXSA:2022-2989:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-2989:01 advisory. libreswan: Malicious IKEv1 packet can cause libreswan to restart CVE-2022-23094 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.12-2.el8 (AXSA:2023-7185:10)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-7185:10 advisory. libreswan: Invalid IKEv2 REKEY proposal causes restart CVE-2023-38710 libreswan: Invalid IKEv1 Quick Mode ID causes restart CVE-2023-38711 libreswan...

MiracleLinux 9 : libreswan-4.12-1.el9 (AXSA:2023-6824:09)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6824:09 advisory. libreswan: Invalid IKEv2 REKEY proposal causes restart CVE-2023-38710 libreswan: Invalid IKEv1 Quick Mode ID causes restart CVE-2023-38711 libreswan...

MiracleLinux 8 : NetworkManager-libreswan-1.2.10-7.el8_10 (AXSA:2024-8943:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8943:06 advisory. NetworkManager-libreswan: Local privilege escalation via leftupdown CVE-2024-9050 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.6-3.el9.1 (AXSA:2023-5325:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5325:02 advisory. libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan CVE-2023-30570 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.12-2.el8_10.4 (AXSA:2024-8551:06)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8551:06 advisory. libreswan: IKEv1 default AH/ESP responder can crash and restart CVE-2024-3652 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.9-3.el8 (AXSA:2023-6143:08)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6143:08 advisory. libreswan: Regression of CVE-2023-30570 fixes in the MIRACLE LINUX CVE-2023-2295 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.12-2.el9_4.1 (AXSA:2024-8485:05)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8485:05 advisory. libreswan: IKEv1 default AH/ESP responder can crash and restart CVE-2024-3652 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.12-2.el9.ML.1 (AXSA:2024-8105:03)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8105:03 advisory. libreswan: Missing PreSharedKey for connection can cause crash CVE-2024-2357 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libreswan-4.9-2.el8.2 (AXSA:2023-6138:07)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6138:07 advisory. libreswan: remote DoS via crafted TS payload with an incorrect selector length CVE-2023-23009 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : libreswan-3.29-7.el8 (AXSA:2020-374:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-374:02 advisory. libreswan: DoS attack via malicious IKEv1 informational exchange message CVE-2020-1763 Tenable has extracted the preceding description block directly from the...