26 matches found
SUSE CVE-2013-2944
strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature...
SUSE: Security Advisory (SUSE-SU-2013:1237-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2013:1237-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201309-02
Gentoo Linux Local Security Checks GLSA 201309-02 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : strongswan (openSUSE-SU-2013:0873-1)
Applied upstream patch for security vulnerability discovered by Kevin Wojtysiak in ECDSA signature verification of the strongswan openssl plugin bnc815236, CVE-2013-2944 0003-Check-return-value-of-ECDSAVerify-correctly.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
openSUSE Security Update : strongswan (openSUSE-SU-2013:0774-1)
Applied upstream patch for security vulnerability discovered by Kevin Wojtysiak in ECDSA signature verification of the strongswan openssl plugin bnc815236, CVE-2013-2944 0003-Check-return-value-of-ECDSAVerify-correctly.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
openSUSE Security Update : strongswan (openSUSE-SU-2013:0775-1)
Applied upstream patch for security vulnerability discovered by Kevin Wojtysiak in ECDSA signature verification of the strongswan openssl plugin bnc815236, CVE-2013-2944 0003-Check-return-value-of-ECDSAVerify-correctly.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
Fedora Update for strongswan FEDORA-2014-5238
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for strongswan FEDORA-2014-0567
Check for the Version of strongswan OpenVAS Vulnerability Test Fedora Update for strongswan FEDORA-2014-0567 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora Update for strongswan FEDORA-2014-0567
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[BSA-086] Security update for strongswan
Updated strongswan packages for squeeze-backports and wheezy-backports fix the following vulnerabilities: - CVE-2013-2944: When using the openssl plugin for ECDSA based authentication, an empty, zeroed or otherwise invalid signature is handled as a legitimate one. - CVE-2013-6075: DoS vulnerabili...
Fedora Update for strongswan FEDORA-2013-14481
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for strongswan FEDORA-2013-14510
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.3 Security Update : strongswan (SAT Patch Number 8021)
This update fixes the ECDSA signature vulnerability in strongswan. CVE-2013-2944 was assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C...
SuSE 10 Security Update : strongswan (ZYPP Patch Number 8546)
This update fixes the ECDSA signature vulnerability in strongswan. CVE-2013-2944 was assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
SuSE 11.2 Security Update : strongswan (SAT Patch Number 7638)
This update fixes the ECDSA signature vulnerability in strongswan. CVE-2013-2944 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyrigh...
FreeBSD : strongSwan -- ECDSA signature verification issue (6ff570cb-b418-11e2-b279-20cf30e32f6d)
strongSwan security team reports : If the openssl plugin is used for ECDSA signature verification an empty, zeroed or otherwise invalid signature is handled as a legitimate one. Both IKEv1 and IKEv2 are affected. Affected are only installations that have enabled and loaded the OpenSSL crypto...
[SECURITY] [DSA 2665-1] strongswan security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2665-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez April 30, 2013 http://www.debian.org/security/faq -...
CVE-2013-2944
strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature...
UBUNTU-CVE-2013-2944
strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature...