The Libreswan Project was notified of an issue causing libreswan to restart under some IKEv2 retransmit scenarios when a connection is configured to use PreSharedKeys (authby=secret) and the connection cannot find a matching configured secret. When such a connection is automatically added on startup using the auto= keyword, it can cause repeated crashes leading to a Denial of Service.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Red Hat Enterprise Linux 8 | RedHat | libreswan-0:4.12-2.el8_9.2 | * |
| Red Hat Enterprise Linux 8.6 Extended Update Support | RedHat | libreswan-0:4.5-1.el8_6.2 | * |
| Red Hat Enterprise Linux 8.8 Extended Update Support | RedHat | libreswan-0:4.9-3.el8_8.1 | * |
| Red Hat Enterprise Linux 9 | RedHat | libreswan-0:4.12-1.el9_3.1 | * |
| Red Hat Enterprise Linux 9 | RedHat | libreswan-0:4.12-2.el9_4 | * |
| Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | RedHat | libreswan-0:4.6-3.el9_0.3 | * |
| Red Hat Enterprise Linux 9.2 Extended Update Support | RedHat | libreswan-0:4.9-5.el9_2.1 | * |
| Libreswan | Ubuntu | mantic | * |
| Libreswan | Ubuntu | upstream | * |