Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-45079HistoryJan 31, 2022 - 8:15 a.m.
CVE-2021-45079
2022-01-3108:15:00
Alpine Linux Development Team
security.alpinelinux.org
14
0.002 Low
EPSS
Percentile
53.1%
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.13-main | noarch | strongswan | < 5.9.1-r2 | UNKNOWN |
| Alpine | 3.14-main | noarch | strongswan | < 5.9.1-r3 | UNKNOWN |
| Alpine | 3.15-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.16-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.17-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.18-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.19-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
Related
nessus
nessus
openSUSE 15 Security Update : strongswan (openSUSE-SU-2022:0492-1)
2022-02-22 00:00:00
SUSE SLES15 Security Update : strongswan (SUSE-SU-2022:0211-1)
2022-01-28 00:00:00
Debian DSA-5056-1 : strongswan - security update
2022-01-31 00:00:00
suse
suse
Security update for strongswan (important)
2022-02-18 00:00:00
debian
debian
[SECURITY] [DSA 5056-1] strongswan security update
2022-01-24 17:15:11
[SECURITY] [DLA 2909-1] strongswan security update
2022-02-03 19:30:35
cvelist
cvelist
CVE-2021-45079
2022-01-31 07:15:52
openvas
openvas
Ubuntu: Security Advisory (USN-5250-1)
2022-01-25 00:00:00
openSUSE: Security Advisory for strongswan (openSUSE-SU-2022:0492-1)
2022-02-22 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0211-1)
2022-01-28 00:00:00
osv
osv
CVE-2021-45079
2022-01-31 08:15:07
strongswan vulnerability
2022-01-24 19:07:24
strongswan - security update
2022-01-24 00:00:00
ubuntucve
ubuntucve
CVE-2021-45079
2022-01-24 00:00:00
ubuntu
ubuntu
strongSwan vulnerability
2022-01-24 00:00:00
strongSwan vulnerability
2022-01-24 00:00:00
prion
prion
Authentication flaw
2022-01-31 08:15:00
cbl_mariner
cbl_mariner
CVE-2021-45079 affecting package strongswan for versions less than 5.9.5-1
2022-04-26 20:17:10
CVE-2021-45079 affecting package strongswan 5.7.2-6
2022-02-25 01:45:37
veracode
veracode
Authentication Bypass
2022-01-26 05:09:51
fedora
fedora
[SECURITY] Fedora 34 Update: strongswan-5.9.5-2.fc34
2022-02-04 01:23:04
[SECURITY] Fedora 35 Update: strongswan-5.9.5-2.fc35
2022-02-04 01:23:28
freebsd
freebsd
strongswan - Incorrect Handling of Early EAP-Success Messages
2021-12-16 00:00:00
cve
cve
CVE-2021-45079
2022-01-31 08:15:00
debiancve
debiancve
CVE-2021-45079
2022-01-31 08:15:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0152
2022-02-11 00:00:00
Critical Photon OS Security Update - PHSA-2022-0468
2022-02-11 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0152
2022-02-11 00:00:00
gentoo
gentoo
strongSwan: Multiple Vulnerabilities
2024-05-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2274
2023-10-22 06:24:16