PT-2023-7101 · Unknown+6 · Strongswan+6

Florian Picca

·

Publicado

2023-11-20

·

Atualizado

2025-01-17

·

CVE-2023-41913

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions strongSwan versions 5.3.0 through 5.9.11
Description The issue is caused by a buffer overflow in the charon-tkm process with IKE protocol implementation based on TKMv2, leading to possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer. An attack can occur via a crafted IKE SA INIT message. The vulnerability is present in systems using charon-tkm and strongSwan releases starting from 5.3.0.
Recommendations For strongSwan versions 5.3.0 through 5.9.11, update to version 5.9.12 or apply the available patches to fix the vulnerability. As a temporary workaround, consider restricting access to the charon-tkm process to minimize the risk of exploitation. Avoid using the DH public value in the affected IKE SA INIT message until the issue is resolved.

Correção

RCE

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-120

Identificadores relacionados

ALT-PU-2023-8054
ALT-PU-2023-8212
ALT-PU-2024-7917
AZL-32071
AZL-35287
BDU:2023-08128
CVE-2023-41913
DLA-3663-1
DSA-5560-1
MGASA-2024-0216
OESA-2023-1945
OPENSUSE-SU-2023_4514-1
OPENSUSE-SU-2023_4529-1
SUSE-SU-2023:4514-1
SUSE-SU-2023:4515-1
SUSE-SU-2023:4516-1
SUSE-SU-2023:4529-1
SUSE-SU-2023_4514-1
SUSE-SU-2023_4515-1
SUSE-SU-2023_4516-1
SUSE-SU-2023_4529-1
USN-6488-1
USN-6488-2

Produtos afetados

Alt Linux
Astra Linux
Linuxmint
Red Os
Suse
Ubuntu
Strongswan