Search CVE reports
1 – 2 of 2 results
CVE-2018-5389
Low priorityThe Internet Key Exchange v1 main mode is vulnerable to offline dictionary or brute force attacks. Reusing a key pair across different versions and modes of IKE could lead to cross-protocol authentication bypasses. It is well...
4 affected packages
ipsec-tools, isakmpd, libreswan, strongswan
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ipsec-tools | — | Not in release | Not in release | Ignored | Ignored |
| isakmpd | — | Ignored | Ignored | Ignored | Ignored |
| libreswan | — | Ignored | Ignored | Ignored | Not in release |
| strongswan | — | Ignored | Ignored | Ignored | Ignored |
CVE-2006-4436
Unknown prioritySome fixes available 7 of 8
isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations (SA) with a replay window of size 0 when isakmpd acts as a responder during SA negotiation, which allows remote attackers to replay IPSec...
1 affected package
isakmpd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| isakmpd | — | — | — | — | — |