26 matches found
SUSE-SU-2023:4529-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...
SUSE-SU-2023:4516-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...
SUSE-SU-2023:4514-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...
Debian DSA-5560-1 : strongswan - security update
The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5560 advisory. Florian Picca reported a bug in the charon-tkm daemon in strongSwan an IKE/IPsec suite. The TKM-backed version of the charon IKE daemon charon-tkm doesn't check the...
SUSE-SU-2022:4197-1 Security update for strongswan
This update for strongswan fixes the following issues: Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Feature changes: - Enable Marvell plugin jscSLE-20151...
OPENSUSE-SU-2022:0492-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. bsc1194471...
SUSE-SU-2022:0202-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. bsc1194471...
OPENSUSE-SU-2021:1399-1 Security update for strongswan
This update for strongswan fixes the following issues: A feature was added: - Add authels plugin to support Marvell FC-SP encryption jscSLE-20151 Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer...
SUSE-SU-2021:3468-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435...
OPENSUSE-SU-2021:3467-1 Security update for strongswan
This update for strongswan fixes the following issues: A feature was added: - Add authels plugin to support Marvell FC-SP encryption jscSLE-20151 Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer...
DSA-4989-1 strongswan - security update
Bulletin has no description...
SUSE-SU-2020:0743-1 Security update for strongswan
This update for strongswan fixes the following issues: Strongswan was updated to version 5.8.2 jscSLE-11370. Security issue fixed: - CVE-2018-6459: Fixed a DoS vulnerability in the parser for PKCS1 RSASSA-PSS signatures that was caused by insufficient input validation bsc1079548. Full changelogs:...
SUSE-SU-2019:3266-1 Security update for strongswan
This update for strongswan provides the following fixes: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed...
OPENSUSE-SU-2019:2598-1 Security update for strongswan
This update for strongswan fixes the following issues: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed a...
OPENSUSE-SU-2019:2594-1 Security update for strongswan
This update for strongswan fixes the following issues: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed a...
SUSE-SU-2017:2143-1 Security update for strongswan
This update for strongswan fixes the following issues: CVE-2017-11185: Specific RSA signatures passed to the gmp plugin for verification can cause a null-pointer dereference and it may lead to a denial of service bsc1051222...
SUSE-SU-2017:1473-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2017-9022: Insufficient Input Validation in gmp Plugin leads to Denial of service bsc1039514 - CVE-2017-9023: Incorrect x509 ASN.1 parser error handling could lead to Denial of service bsc1039515 - IKEv1 protocol is vulnerable to DoS...
SUSE-SU-2017:1471-1 Security update for strongswan
This update for strongswan fixes the following issues: - CVE-2017-9022: Insufficient Input Validation in gmp Plugin leads to Denial of service bsc1039514 - CVE-2017-9023: Incorrect x509 ASN.1 parser error handling could lead to Denial of service bsc1039515...
SUSE-SU-2015:2183-1 Security update for strongswan
The strongswan package was updated to fix the following security issue: - CVE-2015-8023: Fixed an authentication bypass vulnerability in the eap-mschapv2 plugin bsc953817...
SUSE-SU-2015:2183-2 Security update for strongswan
The strongswan package was updated to fix the following security issue: - CVE-2015-8023: Fixed an authentication bypass vulnerability in the eap-mschapv2 plugin bsc953817...