1327957 – (CVE-2016-3071) CVE-2016-3071 libreswan: DoS when receiving an IKE transforn containing AES_XCBC

Bug 1327957 (CVE-2016-3071) - CVE-2016-3071 libreswan: DoS when receiving an IKE transforn containing AES_XCBC

Summary: CVE-2016-3071 libreswan: DoS when receiving an IKE transforn containing AES_XCBC

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	CVE-2016-3071
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1327958
Blocks:
TreeView+	depends on / blocked

Reported:	2016-04-18 07:09 UTC by Andrej Nemec
Modified:	2021-02-17 04:02 UTC (History)
CC List:	2 users (show)
Fixed In Version:	libreswan 3.17
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-04-19 08:29:20 UTC
Embargoed:

Attachments	(Terms of Use)

Description Andrej Nemec 2016-04-18 07:09:12 UTC

A security vulnerability was introduced in libreswan 3.16. The pluto IKE daemon would restart when receiving an IKE transform containg AES_XCBC.

External references:

https://lists.libreswan.org/pipermail/swan-announce/2016/000019.html

Comment 1 Andrej Nemec 2016-04-18 07:09:35 UTC

Created libreswan tracking bugs for this issue:

Affects: fedora-all [bug 1327958]

Comment 2 Paul Wouters 2016-04-18 15:53:09 UTC

3.17-1 packages for fedora were already pushed and are in stable

Comment 3 Andrej Nemec 2016-04-19 08:29:20 UTC

(In reply to Paul Wouters from comment #2)
> 3.17-1 packages for fedora were already pushed and are in stable

Thanks, this is now fixed in fedora.

Note You need to log in before you can comment on or make changes to this bug.