CVE-2017-9022

2017-06-08T16:29:00
ID CVE-2017-9022
Type cve
Reporter cve@mitre.org
Modified 2019-04-16T14:36:00

Description

The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.