CVE-2023-30570 Information

Description

pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.

Reference

https://libreswan.org/security/CVE-2023-30570/CVE-2023-30570.txt