SUSE SLED15 / SLES15 Security Update : strongswan (SUSE-SU-2026:1637-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1637-1 advisory. - CVE-2026-35328: infinite loop when handling supported versions TLS extension bsc1261712. - CVE-2026-35329:...

UBUNTU-CVE-2026-35332

NULL-Pointer Dereference When Handling ECDH Public Value in TLS...

CVE-2026-35332

NULL-Pointer Dereference When Handling ECDH Public Value in TLS...

PT-2025-43732

Name of the Vulnerable Software and Affected Versions BLU-IC2 versions through 1.19.5 BLU-IC4 versions through 1.19.5 Description The firmware uses a default SNMP community string, specifically 'public'. This allows unauthorized access to device information and potential modification of settings...

CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...

CVE-2023-41913

CVE-2023-41913 affects strongSwan prior to 5.9.12, due to a buffer overflow in the DH proxy (charon-tkm) that can trigger unauthenticated remote code execution via a crafted IKE_SA_INIT message. Earliest affected version is 5.3.0. Reported impact is total compromise of confidentiality, integrity,...

CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...