18 matches found
CVE-2021-41990 affecting package strongswan for versions less than 5.9.5-1
CVE-2021-41990 affecting package strongswan for versions less than 5.9.5-1. An upgraded version of the package is available that resolves this issue...
FreeBSD : strongswan - denial-of-service vulnerability in the gmp plugin/denial-of-service vulnerability in the in-memory certificate cache (58528a94-5100-4208-a04d-edc01598cf01)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 58528a94-5100-4208-a04d-edc01598cf01 advisory. - The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted...
CVE-2021-41990 affecting package strongswan 5.7.2-6
CVE-2021-41990 affecting package strongswan 5.7.2-6. A patched version of the package is available...
openSUSE: Security Advisory for strongswan (openSUSE-SU-2021:1399-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for strongswan (important)
openSUSE Security Update: Security update for strongswan Announcement ID: openSUSE-SU-2021:1399-1 Rating: important References: 1191367 1191435 SLE-20151 Cross-References: CVE-2021-41990 CVE-2021-41991 CVSS scores: CVE-2021-41990 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-419...
OESA-2021-1408 strongswan security update
The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key exchange protocols in conjunction with the native NETKEY IPsec stack of the Linux kernel. Security Fixes: The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS...
Fedora: Security Advisory for strongswan (FEDORA-2021-0b37146973)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Ubuntu: Security Advisory (USN-5111-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for strongswan (openSUSE-SU-2021:3467-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Debian: Security Advisory (DSA-4989-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:3467-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-41990
The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signature. For example, this can be triggered by an unrelated self-signed CA certificate sent by an initiator. Remote code execution cannot occur...
SUSE-SU-2021:3469-1 Security update for strongswan
This update for strongswan fixes the following issues: - Fix trailing quotation mark missing from example in README. bsc1167880 - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer Overflow in the gmp Plugin. bsc1191367...
SUSE-SU-2021:3467-1 Security update for strongswan
This update for strongswan fixes the following issues: A feature was added: - Add authels plugin to support Marvell FC-SP encryption jscSLE-20151 Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer...
USN-5111-1: strongSwan vulnerabilities
It was discovered that strongSwan incorrectly handled certain RSASSA-PSS signatures. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service. CVE-2021-41990 It was discovered that strongSwan incorrectly handled replacing certificates in the cache. A...
[SECURITY] [DSA 4989-1] strongswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4989-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 18, 2021 https://www.debian.org/security/faq -...
CVE-2021-41990
CVE-2021-41990 affects the gmp plugin in strongSwan up to version 5.9.4, where processing a crafted certificate with an RSASSA-PSS signature can trigger a remote integer overflow. The issue can be exploited by an initiator sending an unrelated self-signed CA certificate, but remote code execution...
strongswan - denial-of-service vulnerability in the gmp plugin/denial-of-service vulnerability in the in-memory certificate cache
Strongswan Release Notes reports: Fixed a denial-of-service vulnerability in the gmp plugin that was caused by an integer overflow when processing RSASSA-PSS signatures with very large salt lengths. This vulnerability has been registered as CVE-2021-41990. Fixed a denial-of-service vulnerability ...