Bug 1327957 (CVE-2016-3071) - CVE-2016-3071 libreswan: DoS when receiving an IKE transforn containing AES_XCBC
Summary: CVE-2016-3071 libreswan: DoS when receiving an IKE transforn containing AES_XCBC
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: CVE-2016-3071
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1327958
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-04-18 07:09 UTC by Andrej Nemec
Modified: 2019-09-29 13:47 UTC (History)
2 users (show)

Fixed In Version: libreswan 3.17
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-04-19 08:29:20 UTC


Attachments (Terms of Use)

Description Andrej Nemec 2016-04-18 07:09:12 UTC
A security vulnerability was introduced in libreswan 3.16. The pluto IKE daemon would restart when receiving an IKE transform containg AES_XCBC.

External references:

https://lists.libreswan.org/pipermail/swan-announce/2016/000019.html

Comment 1 Andrej Nemec 2016-04-18 07:09:35 UTC
Created libreswan tracking bugs for this issue:

Affects: fedora-all [bug 1327958]

Comment 2 Paul Wouters 2016-04-18 15:53:09 UTC
3.17-1 packages for fedora were already pushed and are in stable

Comment 3 Andrej Nemec 2016-04-19 08:29:20 UTC
(In reply to Paul Wouters from comment #2)
> 3.17-1 packages for fedora were already pushed and are in stable

Thanks, this is now fixed in fedora.


Note You need to log in before you can comment on or make changes to this bug.