Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-40617HistoryOct 31, 2022 - 6:15 a.m.
CVE-2022-40617
2022-10-3106:15:00
Alpine Linux Development Team
security.alpinelinux.org
14
0.002 Low
EPSS
Percentile
52.8%
strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker’s control) that doesn’t properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | strongswan | < 5.9.8-r0 | UNKNOWN |
| Alpine | 3.13-main | noarch | strongswan | < 5.9.1-r2 | UNKNOWN |
| Alpine | 3.14-main | noarch | strongswan | < 5.9.1-r3 | UNKNOWN |
| Alpine | 3.15-main | noarch | strongswan | < 5.9.1-r4 | UNKNOWN |
| Alpine | 3.16-main | noarch | strongswan | < 5.9.5-r2 | UNKNOWN |
| Alpine | 3.17-main | noarch | strongswan | < 5.9.8-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | strongswan | < 5.9.8-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | strongswan | < 5.9.8-r0 | UNKNOWN |
Related
nessus
nessus
CBL Mariner 2.0 Security Update: strongswan (CVE-2022-40617)
2023-03-20 00:00:00
Debian DLA-3143-1 : strongswan - LTS security update
2022-10-10 00:00:00
SUSE SLED15 / SLES15 Security Update : strongswan (SUSE-SU-2022:4159-1)
2022-11-23 00:00:00
prion
prion
Code injection
2022-10-31 06:15:00
debian
debian
[SECURITY] [DSA 5249-1] strongswan security update
2022-10-06 16:08:47
[SECURITY] [DLA 3143-1] strongswan security update
2022-10-10 20:00:33
openvas
openvas
Debian: Security Advisory (DSA-5249-1)
2022-10-08 00:00:00
Debian: Security Advisory (DLA-3143-1)
2022-10-12 00:00:00
strongSwan 4.x < 5.9.8 DoS Vulnerability
2022-11-01 00:00:00
osv
osv
strongswan vulnerability
2022-10-03 17:35:02
strongswan - security update
2022-10-10 00:00:00
strongswan vulnerability
2022-10-03 19:18:27
veracode
veracode
Denial Of Service (DoS)
2022-10-07 10:40:42
cnvd
cnvd
strongSwan trust management issue vulnerability
2022-10-11 00:00:00
ubuntucve
ubuntucve
CVE-2022-40617
2022-10-03 00:00:00
cve
cve
CVE-2022-40617
2022-10-31 06:15:00
ubuntu
ubuntu
strongSwan vulnerability
2022-10-03 00:00:00
strongSwan vulnerability
2022-10-03 00:00:00
freebsd
freebsd
strongswan -- DOS attack vulnerability
2022-10-03 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: strongswan-5.9.8-1.fc37
2022-11-10 22:48:00
[SECURITY] Fedora 36 Update: strongswan-5.9.8-1.fc36
2022-10-26 17:28:34
cbl_mariner
cbl_mariner
CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1
2023-01-03 20:57:25
CVE-2022-40617 affecting package strongswan 5.7.2-5
2023-03-02 04:18:33
cvelist
cvelist
CVE-2022-40617
2022-10-31 00:00:00
debiancve
debiancve
CVE-2022-40617
2022-10-31 06:15:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0279
2022-11-10 00:00:00
Important Photon OS Security Update - PHSA-2022-0540
2022-11-11 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0279
2022-11-10 00:00:00
gentoo
gentoo
strongSwan: Multiple Vulnerabilities
2024-05-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2274
2023-10-22 06:24:16