libreswan 3.9 up to and including 3.12 allows remote malicious users to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libreswan libreswan 3.10 |
||
libreswan libreswan 3.12 |
||
libreswan libreswan 3.11 |
||
libreswan libreswan 3.9 |