CVE-2023-38712
MEDIUMLibreswan 3.x-4.x < 4.12 - Denial of Service via IKEv1 ISAKMP SA Informational Exchange
Title source: llmDescription
An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.
References (2)
Core 2
Core References
Third Party Advisory
https://github.com/libreswan/libreswan/tags
Third Party Advisory
https://libreswan.org/security/CVE-2023-38712/
Scores
CVSS v3
6.5
EPSS
0.0069
EPSS Percentile
48.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (1)
libreswan/libreswan
3.0 - 4.0
Published
Aug 25, 2023
Tracked Since
Feb 18, 2026