VDB

GCVE-VVD-MAGEIA-2024-138

GCVE-VVD-MAGEIA-2024-138
Advisory Published
Vulnetix · Advisory published May 9, 2024
CVE-2024-3652: The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiamock-mageia-configs0 (affected), 9-1.1.mga9 (unaffected)
Mageialibreswan0 (affected), 4.15-1.mga9 (unaffected), 0 (affected), 4.15-1.mga9 (unaffected)
Mageiamock-core-configs0 (affected), 39.1-2.2.mga9 (unaffected)

References

Updated libreswan packages fix security vulnerability
advisory
Updated libreswan packages fix security vulnerability
issue
Updated mock-mageia-configs & mock-core-configs packages fix cauldron support
advisory
Updated mock-mageia-configs & mock-core-configs packages fix cauldron support
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›