The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted and integrity protected using the established IKE SA encryption and integrity keys, but as a receiver, the integrity check value was not verified. This issue affects versions before 3.29.
Weakness
The product does not validate or incorrectly validates the integrity check values or “checksums” of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libreswan | Libreswan | * | 3.29 (excluding) |
| Strongswan | Strongswan | * | 5.0.0 (excluding) |
| Openswan | Xelerance | * | * |
| Red Hat Enterprise Linux 8 | RedHat | libreswan-0:3.29-6.el8 | * |
| Libreswan | Ubuntu | bionic | * |
| Libreswan | Ubuntu | cosmic | * |
| Libreswan | Ubuntu | devel | * |
| Libreswan | Ubuntu | disco | * |
| Libreswan | Ubuntu | eoan | * |
| Libreswan | Ubuntu | esm-apps/bionic | * |
| Libreswan | Ubuntu | esm-apps/focal | * |
| Libreswan | Ubuntu | esm-apps/jammy | * |
| Libreswan | Ubuntu | esm-apps/noble | * |
| Libreswan | Ubuntu | focal | * |
| Libreswan | Ubuntu | groovy | * |
| Libreswan | Ubuntu | hirsute | * |
| Libreswan | Ubuntu | impish | * |
| Libreswan | Ubuntu | jammy | * |
| Libreswan | Ubuntu | kinetic | * |
| Libreswan | Ubuntu | lunar | * |
| Libreswan | Ubuntu | mantic | * |
| Libreswan | Ubuntu | noble | * |
| Libreswan | Ubuntu | oracular | * |
| Libreswan | Ubuntu | plucky | * |
| Libreswan | Ubuntu | questing | * |
| Libreswan | Ubuntu | trusty | * |
| Libreswan | Ubuntu | upstream | * |
Potential Mitigations
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/145.html
- https://cwe.mitre.org/data/definitions/463.html
- https://cwe.mitre.org/data/definitions/75.html
References
- https://access.redhat.com/errata/RHSA-2019:3391
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10155
- https://libreswan.org/security/CVE-2019-10155/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EUEXFCN7FAYBKJBQJLYCEUQUCHDEJRZW/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFGPGLLKAXSLWFI62A6BZHTZSCHRCBXS/
- https://access.redhat.com/errata/RHSA-2019:3391
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10155
- https://libreswan.org/security/CVE-2019-10155/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EUEXFCN7FAYBKJBQJLYCEUQUCHDEJRZW/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFGPGLLKAXSLWFI62A6BZHTZSCHRCBXS/