PT-2020-3608 · Libreswan+2 · Libreswan+2

Stephan Zeisberg

·

Published

2020-05-11

·

Updated

2021-05-05

·

CVE-2020-1763

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions libreswan versions 3.27 through 3.31
Description An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan, where an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash. This issue allows a remote attacker to cause a denial of service.
Recommendations For libreswan versions 3.27 through 3.31, as a temporary workaround, consider restricting access to the pluto daemon to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2020-03943
CESA-2020_2070
CVE-2020-1763
DSA-4684-1
MGASA-2020-0215
RHSA-2020:2069
RHSA-2020:2070
RHSA-2020:2071
RHSA-2020_2070

Affected Products

Centos
Red Hat
Libreswan