PT-2023-22795 · Libreswan+3 · Libreswan+3

Xu-Huai

Published

2023-05-03

Updated

2025-01-14

CVE-2023-30570

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Libreswan versions 3.28 through 4.10

Description The issue allows for a denial of service, causing the daemon to crash due to responder SPI mishandling. This can be triggered via unauthenticated IKEv1 Aggressive Mode packets.

Recommendations For versions 3.28 through 4.10, update to version 4.11 or later to resolve the issue.

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

ALSA-2023:2122

ALSA-2023:3107

ALSA-2023:3148

AZL-26873

AZL-34934

CESA-2023_2122

CVE-2023-30570

MGASA-2024-0085

OESA-2023-1318

RHSA-2023:2120

RHSA-2023:2121

RHSA-2023:2122

RHSA-2023:2123

RHSA-2023:2124

RHSA-2023:2125

RHSA-2023:2126

RHSA-2023_2120

RHSA-2023_2122

Affected Products

Almalinux

Centos

Libreswan

Red Hat

PT-2023-22795 · Libreswan+3 · Libreswan+3

CVE-2023-30570

Weakness Enumeration

Related Identifiers

Affected Products

References · 38