Security Advisory

CVE-2024-3652

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-11 01:32:13

Last updated 2026-02-27 15:19:48

Assigner libreswan

State PUBLISHED

Description

The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswans default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.

← Browse all CVEs View on cve.org ↗