Vulnerabilities > CVE-2015-3240 - Numeric Errors vulnerability in Libreswan 3.14
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Nessus
NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2015-1979.NASL description Updated libreswan packages that fix one security issue, several bugs, and add several enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Libreswan is an implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). A flaw was discovered in the way Libreswan last seen 2020-06-01 modified 2020-06-02 plugin id 86744 published 2015-11-05 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86744 title RHEL 7 : libreswan (RHSA-2015:1979) NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2015-1979.NASL description From Red Hat Security Advisory 2015:1979 : Updated libreswan packages that fix one security issue, several bugs, and add several enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Libreswan is an implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). A flaw was discovered in the way Libreswan last seen 2020-06-01 modified 2020-06-02 plugin id 86715 published 2015-11-04 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86715 title Oracle Linux 7 : libreswan (ELSA-2015-1979) NASL family Scientific Linux Local Security Checks NASL id SL_20151104_LIBRESWAN_ON_SL7_X.NASL description A flaw was discovered in the way Libreswan last seen 2020-03-18 modified 2015-11-05 plugin id 86749 published 2015-11-05 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86749 title Scientific Linux Security Update : libreswan on SL7.x x86_64 (20151104) NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2015-1979.NASL description Updated libreswan packages that fix one security issue, several bugs, and add several enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Libreswan is an implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). A flaw was discovered in the way Libreswan last seen 2020-06-01 modified 2020-06-02 plugin id 86711 published 2015-11-04 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86711 title CentOS 7 : libreswan (CESA-2015:1979) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201603-13.NASL description The remote host is affected by the vulnerability described in GLSA-201603-13 (Libreswan: Multiple Vulnerabilities) The pluto IKE daemon in Libreswan, when built with NSS, allows remote attackers to cause a Denial of Service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet. Additionally, remote attackers could cause a Denial of Service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK. Impact : Remote attackers could possibly cause Denial of Service. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 89906 published 2016-03-14 reporter This script is Copyright (C) 2016 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/89906 title GLSA-201603-13 : Libreswan: Multiple Vulnerabilities
Redhat
advisories |
| ||||||||||||||||||||||||||||||||||||||
rpms |
|
References
- http://rhn.redhat.com/errata/RHSA-2015-1979.html
- https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt
- http://www.securitytracker.com/id/1033418
- https://lists.openswan.org/pipermail/users/2015-August/023401.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
- http://www.securityfocus.com/bid/77536
- https://security.gentoo.org/glsa/201603-13