CVE-2023-38711 Information

Description

An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6_ADDR receives an IDcr payload with ID_FQDN a NULL pointer dereference causes a crash and restart of the pluto daemon. NOTE: the earliest affected version is 4.6.

Reference

https://github.com/libreswan/libreswan/tags https://libreswan.org/security/CVE-2023-38711/