strongSwan developers report:
Remote attackers are able to bypass authentication by rekeying an
IKE_SA during (1) initiation or (2) re-authentication, which
triggers the IKE_SA state to be set to established.
Only installations that actively initiate or re-authenticate IKEv2
IKE_SAs are affected.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | strongswan | < 5.1.3 | UNKNOWN |