| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|
| CVE-2026-50722 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable | vulnerable | Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_ ... |
| CVE-2026-50721 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable | vulnerable | Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), ... |
| CVE-2026-12413 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable | vulnerable | An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemo ... |
| CVE-2024-3652 | vulnerable | vulnerable | fixed | fixed | fixed | The Libreswan Project was notified of an issue causing libreswan to re ... |
| CVE-2024-2357 | vulnerable | vulnerable (no DSA) | fixed | fixed | fixed | The Libreswan Project was notified of an issue causing libreswan to re ... |
| CVE-2023-38712 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an ... |
| CVE-2023-38711 | fixed | vulnerable | fixed | fixed | fixed | An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick ... |
| CVE-2023-38710 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in Libreswan before 4.12. When an IKEv2 Child ... |
| Bug | Description |
|---|
| CVE-2023-30570 | pluto in Libreswan before 4.11 allows a denial of service (responder S ... |
| CVE-2023-23009 | Libreswan 4.9 allows remote attackers to cause a denial of service (as ... |
| CVE-2022-23094 | Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of ... |
| CVE-2020-1763 | An out-of-bounds buffer read flaw was found in the pluto daemon of lib ... |
| CVE-2019-12312 | In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon ... |
| CVE-2019-10155 | The Libreswan Project has found a vulnerability in the processing of I ... |
| CVE-2016-5391 | libreswan before 3.18 allows remote attackers to cause a denial of ser ... |
| CVE-2016-5361 | programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial ... |
| CVE-2016-3071 | Libreswan 3.16 might allow remote attackers to cause a denial of servi ... |
| CVE-2015-3240 | The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6. ... |
| CVE-2015-3204 | libreswan 3.9 through 3.12 allows remote attackers to cause a denial o ... |
| CVE-2013-7283 | Race condition in the libreswan.spec files for Red Hat Enterprise Linu ... |
| CVE-2013-6467 | Libreswan 3.7 and earlier allows remote attackers to cause a denial of ... |
| CVE-2013-4564 | Libreswan 3.6 allows remote attackers to cause a denial of service (cr ... |
| CVE-2013-2052 | Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when O ... |