CVE-2023-38712

Name

CVE-2023-38712

Description

An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://github.com/libreswan/libreswan/tags
MISC	https://libreswan.org/security/CVE-2023-38712/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:libreswan:libreswan::::::::`	libreswan	>= 3.0	< 4.0
`cpe:2.3:a:libreswan:libreswan::::::::`	libreswan	>= 4.0	< 4.12

Source package	Branch	Version	Maintainer	Status
libreswan	3.18-community	4.11-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libreswan	edge-community	4.12-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed

References

Match rules

Vulnerable and fixed packages