vulnerability

CentOS Linux: CVE-2019-10155: Low: libreswan security and bug fix update (CESA-2019:3391)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:S/C:N/I:N/A:P)	Jun 12, 2019	Nov 6, 2019	May 25, 2023

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:N/A:P)

Published

Jun 12, 2019

Added

Nov 6, 2019

Modified

May 25, 2023

Description

The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted and integrity protected using the established IKE SA encryption and integrity keys, but as a receiver, the integrity check value was not verified. This issue affects versions before 3.29.

Solution(s)

centos-upgrade-libreswancentos-upgrade-libreswan-debuginfocentos-upgrade-libreswan-debugsource

References

NVD-CVE-2019-10155
REDHAT-RHSA-2019:3391

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today