122 matches found
libreswan: Malicious IKEv1 packet can cause libreswan to restart
A vulnerability was found in libreswan. A malformed packet that is being rejected triggers a logging action that causes a NULL pointer dereference issue, leading to a crash of the pluto daemon...
CVE-2022-23094
A vulnerability was found in libreswan. A malformed packet that is being rejected triggers a logging action that causes a NULL pointer dereference issue, leading to a crash of the pluto daemon. Mitigation If all configured connections are using IKEv2, the IKEv1 subsystem can be disabled by adding...
Libreswan Code Issue Vulnerability (CNVD-2022-15522)
Libreswan is an IPsec implementation similar to Openswan, which is mainly used to ensure security, integrity issues in data transmission. libreswan has a code issue vulnerability that can be exploited by an attacker to send specially crafted IKEv1 packets to an application, triggering a logging...
Libreswan 代码问题漏洞
Libreswan is an IPsec implementation similar to Openswan, which is mainly used to ensure security, integrity issues in data transmission. libreswan has a code issue vulnerability that can be exploited by an attacker to send specially crafted IKEv1 packets to an application, triggering a logging...
The vulnerability of the Pluto demon in the VPN protocol using “IPsec” with libreswan, which involves reading data beyond the allowed buffer limits, allows a hacker to cause a service failure.
The vulnerability of the Pluto demon’s VPN protocol using “IPsec” in libreswan involves reading data beyond the allowed buffer limits. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
NewStart CGSL MAIN 6.01 : libreswan Vulnerability (NS-SA-2020-0035)
The remote NewStart CGSL host, running version MAIN 6.01, has libreswan packages installed that are affected by a vulnerability: - An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to...
MGASA-2020-0215 Updated libreswan packages fix security vulnerability
Updated libreswan packages fix security vulnerability: An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the...
Updated libreswan packages fix security vulnerability
Updated libreswan packages fix security vulnerability: An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the...
Libreswan Buffer Overflow Vulnerability
Libreswan is an IPsec implementation similar to Openswan, which is mainly used to ensure security, integrity issues in data transmission. A buffer overflow vulnerability exists in the pluto daemon in libreswan versions 3.27 through 3.31. An attacker can exploit this vulnerability by sending...
Cross site scripting
An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...
CVE-2020-1763
An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...
UBUNTU-CVE-2020-1763
An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...
CVE-2020-1763
Libreswan pluto daemon contained an out-of-bounds buffer read in versions 3.27–3.31. An unauthenticated attacker could crash libreswan by sending specially crafted IKEv1 Informational Exchange packets; the daemon respawns after the crash. Documented advisories from Debian, Mageia, Gentoo, and oth...
CVE-2020-1763
An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash. Mitigation Red Hat has investigated whether a...
libreswan: DoS attack via malicious IKEv1 informational exchange message
An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...
Denial Of Service (DoS)
openswan is vulnerable to denial of service DoS. The vulnerability exists through the way Openswan's pluto IKE daemon processed some fields of X.509 certificates. A remote attacker could provide a specially-crafted X.509 certificate that would crash the pluto daemon...
Denial Of Service (DoS)
openswan is vulnerable to denial of service DoS. The vulnerability exists as a flaw in the Dead Peer Detection DPD in Openswan's pluto IKE daemon. A remote attacker could use a malicious DPD packet to crash the pluto daemon...
DEBIAN-CVE-2019-12312
In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon restart. An attacker can trigger a NULL pointer dereference by initiating an IKEv2 IKESAINIT exchange, followed by a bogus INFORMATIONAL exchange instead of the normallly expected IKEAUTH exchange. This affects...
Libreswan Denial of Service Vulnerability (CNVD-2017-13245)
Libreswan is an IPsec implementation similar to Openswan, which is mainly used to ensure security, integrity issues in data transmission. A security vulnerability exists in Libreswan versions prior to 3.18. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...
CVE-2016-5391
libreswan before 3.18 allows remote attackers to cause a denial of service NULL pointer dereference and pluto daemon restart...