The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: libreswan
Published: 2024-03-11T19:39:03.280Z
Updated: 2024-08-01T19:11:53.507Z
Reserved: 2024-03-09T22:24:12.530Z
Link: CVE-2024-2357
Vulnrichment
Updated: 2024-08-01T19:11:53.507Z
NVD
Status : Awaiting Analysis
Published: 2024-03-11T20:15:07.867
Modified: 2024-03-23T03:15:12.690
Link: CVE-2024-2357
Redhat