Unrated severityNVD Advisory· Published Jan 16, 2014· Updated Apr 29, 2026
CVE-2013-7294
CVE-2013-7294
Description
The ikev2parent_inI1outR1 function in pluto/ikev2_parent.c in libreswan before 3.7 allows remote attackers to cause a denial of service (restart) via an IKEv2 I1 notification without a KE payload.
Affected products
7cpe:2.3:a:libreswan:libreswan:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:libreswan:libreswan:*:*:*:*:*:*:*:*range: <=3.6
- cpe:2.3:a:libreswan:libreswan:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:libreswan:libreswan:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:libreswan:libreswan:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:libreswan:libreswan:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:libreswan:libreswan:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:libreswan:libreswan:3.5:*:*:*:*:*:*:*
Patches
12899351224fehttps://github.com/libreswan/libreswanvia nvd-ref
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- github.com/libreswan/libreswan/commit/2899351224fe2940aec37d7656e1e392c0fe07f0nvdExploitPatch
- secunia.com/advisories/56276nvdVendor Advisory
- lists.libreswan.org/pipermail/swan-announce/2013/000007.htmlnvdVendor Advisory
- secunia.com/advisories/56915nvd
- www.osvdb.org/101573nvd
News mentions
0No linked articles in our index yet.