Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6_ADDR receives an IDcr payload with ID_FQDN, a NULL pointer dereference causes a crash and restart of the pluto daemon. NOTE: the earliest affected version is 4.6.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Libreswan 代码问题漏洞
Vulnerability Description
Libreswan是一个类似于Openswan的IPsec实现,它主要用于保证数据传输中的安全性、完整性问题。 Libreswan 4.12之前版本存在安全漏洞,该漏洞源于当配置了使用ID_IPV4_ADDR或ID_IPV6_ADDR的IKEv1快速模式(Quick Mode)连接,而收到一个带有ID_FQDN的IDcr负载时,会导致空指针解引用,从而导致pluto守护进程崩溃并重新启动。
CVSS Information
N/A
Vulnerability Type
N/A