CVE-2023-23009
MEDIUMLibreswan 4.9 - Denial of Service via Crafted TS Payload
Title source: llmDescription
Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload with an incorrect selector length.
References (4)
Core 4
Core References
Exploit, Issue Tracking, Patch
https://github.com/libreswan/libreswan/issues/954
Third Party Advisory vendor-advisory
https://www.debian.org/security/2023/dsa-5368
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MFOIQX2LRL43P3GJT33DE7G7COHNXDN/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSMYJH7MC2FZGCY5NH5AXULO3ISXIHOF/
Scores
CVSS v3
6.5
EPSS
0.0044
EPSS Percentile
63.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (2)
debian/debian_linux
11.0
libreswan/libreswan
4.9
Published
Feb 21, 2023
Tracked Since
Feb 18, 2026