PT-2022-15840 · Libreswan+4 · Libreswan+4

Myozcamo

Published

2022-01-11

Updated

2022-07-08

CVE-2022-23094

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Libreswan versions 4.2 through 4.5

Description The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and daemon crash, via a crafted IKEv1 packet. This occurs because the pluto/ikev1.c file wrongly expects that a state object exists.

Recommendations For versions 4.2 through 4.5, update to version 4.6 to resolve the issue. As a temporary workaround, consider restricting access to the IKEv1 packet handling functionality until the update is applied.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2022:0199

CESA-2022_0199

CVE-2022-23094

DSA-5048-1

MGASA-2022-0030

OESA-2022-1738

RHSA-2022:0199

RHSA-2022:0239

RHSA-2022_0199

RLSA-2022:0199

Affected Products

Almalinux

Centos

Libreswan

Red Hat

Rocky Linux

PT-2022-15840 · Libreswan+4 · Libreswan+4

CVE-2022-23094

Weakness Enumeration

Related Identifiers

Affected Products

References · 31