The Libreswan Project was notified of an issue causing libreswan to restart
under some IKEv2 retransmit scenarios when a connection is configured to
use PreSharedKeys (authby=secret) and the connection cannot find a matching
configured secret. When such a connection is automatically added on startup
using the auto= keyword, it can cause repeated crashes leading to a Denial
of Service.
github.com/libreswan/libreswan/issues/1609
launchpad.net/bugs/cve/CVE-2024-2357
libreswan.org/security/CVE-2024-2357
libreswan.org/security/CVE-2024-2357/CVE-2024-2357.patch
libreswan.org/security/CVE-2024-2357/CVE-2024-2357.txt
nvd.nist.gov/vuln/detail/CVE-2024-2357
security-tracker.debian.org/tracker/CVE-2024-2357
www.cve.org/CVERecord?id=CVE-2024-2357