In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level protocol in use over ipsec, this could allow an action to be repeated.
References
Link | Resource |
---|---|
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:02.ipsec.asc | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: freebsd
Published: 2020-02-18T15:26:45
Updated: 2020-02-18T15:26:45
Reserved: 2019-01-07T00:00:00
Link: CVE-2019-5613
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-02-18T16:15:11.173
Modified: 2020-03-05T16:44:42.257
Link: CVE-2019-5613
JSON object: View
Redhat Information
No data.
CWE