Information on source package libreswan

Available versions

ReleaseVersion
buster3.27-6+deb10u1
bullseye4.3-1+deb11u4
bullseye (security)4.3-1+deb11u3
bookworm4.10-2+deb12u1
trixie4.14-1.1
sid4.14-1.1

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-3652vulnerablevulnerablevulnerablevulnerablevulnerableThe Libreswan Project was notified of an issue causing libreswan to re ...
CVE-2024-2357vulnerablevulnerablevulnerable (no DSA)fixedfixedThe Libreswan Project was notified of an issue causing libreswan to re ...
CVE-2023-38712vulnerablevulnerablevulnerablefixedfixedAn issue was discovered in Libreswan 3.x and 4.x before 4.12. When an ...
CVE-2023-38711fixedfixedvulnerablefixedfixedAn issue was discovered in Libreswan before 4.12. When an IKEv1 Quick ...
CVE-2023-38710vulnerablevulnerablevulnerablefixedfixedAn issue was discovered in Libreswan before 4.12. When an IKEv2 Child ...

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2018-5389vulnerablevulnerablevulnerablevulnerablevulnerableThe Internet Key Exchange v1 main mode is vulnerable to offline dictio ...

Resolved issues

BugDescription
CVE-2023-30570pluto in Libreswan before 4.11 allows a denial of service (responder S ...
CVE-2023-23009Libreswan 4.9 allows remote attackers to cause a denial of service (as ...
CVE-2022-23094Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of ...
CVE-2020-1763An out-of-bounds buffer read flaw was found in the pluto daemon of lib ...
CVE-2019-12312In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon ...
CVE-2019-10155The Libreswan Project has found a vulnerability in the processing of I ...
CVE-2016-5391libreswan before 3.18 allows remote attackers to cause a denial of ser ...
CVE-2016-5361programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial ...
CVE-2016-3071Libreswan 3.16 might allow remote attackers to cause a denial of servi ...
CVE-2015-3240The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6. ...
CVE-2015-3204libreswan 3.9 through 3.12 allows remote attackers to cause a denial o ...
CVE-2013-7283Race condition in the libreswan.spec files for Red Hat Enterprise Linu ...
CVE-2013-6467Libreswan 3.7 and earlier allows remote attackers to cause a denial of ...
CVE-2013-4564Libreswan 3.6 allows remote attackers to cause a denial of service (cr ...
CVE-2013-2052Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when O ...

Security announcements

DSA / DLADescription
DSA-5368-1libreswan - security update
DSA-5048-1libreswan - security update
DSA-4684-1libreswan - security update

Search for package or bug name: Reporting problems