7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
June 1, 2012 Michael Shigorin 4.6.4-alt1
- 4.6.4
+ CVE-2012-2388 is fixed (an attacker presenting a forged
signature and/or certificate can authenticate as any
legitimate user provided that "gmp" plugin is in use
and a connection definition using RSA auth exists)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ALT Linux | 6 | src | strongswan | <Â 4.6.4-alt1 | strongswan-4.6.4-alt1.M60T.1.src.rpm |
ALT Linux | 6 | x86_64 | strongswan | <Â 4.6.4-alt1 | strongswan-4.6.4-alt1.M60T.1.x86_64.rpm |
ALT Linux | 6 | x86_64 | strongswan-debuginfo | <Â 4.6.4-alt1 | strongswan-debuginfo-4.6.4-alt1.M60T.1.x86_64.rpm |
ALT Linux | 6 | i586 | strongswan | <Â 4.6.4-alt1 | strongswan-4.6.4-alt1.M60T.1.i586.rpm |
ALT Linux | 6 | i586 | strongswan-debuginfo | <Â 4.6.4-alt1 | strongswan-debuginfo-4.6.4-alt1.M60T.1.i586.rpm |