CVE-2024-2357 Common Vulnerabilities and Exposures

Upstream information

CVE-2024-2357 at MITRE

Description

The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

No SUSE Bugzilla entries cross referenced.

No SUSE Security Announcements cross referenced.

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Liberty Linux 8	`libreswan >= 4.12-2.el8_9.2`	Patchnames: RHSA-2024:1998
SUSE Liberty Linux 9	`libreswan >= 4.12-1.el9_3.1`	Patchnames: RHSA-2024:2033

SUSE Timeline for this CVE

CVE page created: Mon Mar 11 23:00:07 2024
CVE page last modified: Fri Apr 26 16:38:58 2024