Msrc Azl3 Libreswan 4.15-1 On Azure Linux 3.0 vulnerabilities

CVE-2024-3652 [MEDIUM] CWE-404 IKEv1 default AH/ESP responder can cause libreswan to abort and restart IKEv1 default AH/ESP responder can cause libreswan to abort and restart FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the o

CVE-2023-30570 [HIGH] CWE-400 pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28. pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28. FAQ: Is Azure Linux the only Microsoft product that includes this open-source libra