Impact: Moderate Public Date: 2019-05-12 CWE: CWE-476 Bugzilla: 1716918: CVE-2019-12312 libreswan: null-pointer dereference by sending two IKEv2 packets In Libreswan prior to 3.28, an assertion failure can lead to a pluto IKE daemon restart. An attacker can trigger a NULL pointer dereference by sending two IKEv2 packets (init_IKE and delete_IKE) in 3des_cbc mode to a Libreswan server. This affects send_v2N_spi_response_from_state in programs/pluto/ikev2_send.c when built with Network Security Services (NSS).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libreswan libreswan |