Lucene search
K

26 matches found

OSV
OSV
added 2023/11/22 1:40 p.m.4 views

SUSE-SU-2023:4529-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...

9.8CVSS9.7AI score0.0229EPSS
Exploits0References3
OSV
OSV
added 2023/11/21 4:29 p.m.3 views

SUSE-SU-2023:4516-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...

9.8CVSS9.7AI score0.0229EPSS
Exploits0References3
OSV
OSV
added 2023/11/21 4:27 p.m.6 views

SUSE-SU-2023:4514-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution bsc1216901...

9.8CVSS9.7AI score0.0229EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.13 views

Debian DSA-5560-1 : strongswan - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5560 advisory. Florian Picca reported a bug in the charon-tkm daemon in strongSwan an IKE/IPsec suite. The TKM-backed version of the charon IKE daemon charon-tkm doesn't check the...

9.8CVSS9.1AI score0.0229EPSS
Exploits0References6
OSV
OSV
added 2022/11/23 11:57 a.m.7 views

SUSE-SU-2022:4197-1 Security update for strongswan

This update for strongswan fixes the following issues: Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Feature changes: - Enable Marvell plugin jscSLE-20151...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References3
OSV
OSV
added 2022/02/18 9:33 a.m.4 views

OPENSUSE-SU-2022:0492-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. bsc1194471...

9.1CVSS9.4AI score0.02761EPSS
Exploits0References3
OSV
OSV
added 2022/01/26 12:52 p.m.7 views

SUSE-SU-2022:0202-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. bsc1194471...

9.1CVSS9.4AI score0.02761EPSS
Exploits0References3
OSV
OSV
added 2021/10/31 2:52 p.m.6 views

OPENSUSE-SU-2021:1399-1 Security update for strongswan

This update for strongswan fixes the following issues: A feature was added: - Add authels plugin to support Marvell FC-SP encryption jscSLE-20151 Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer...

7.5CVSS7.6AI score0.06438EPSS
Exploits0References5
OSV
OSV
added 2021/10/19 11:16 a.m.6 views

SUSE-SU-2021:3468-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435...

7.5CVSS7.6AI score0.04804EPSS
Exploits0References3
OSV
OSV
added 2021/10/19 11:16 a.m.5 views

OPENSUSE-SU-2021:3467-1 Security update for strongswan

This update for strongswan fixes the following issues: A feature was added: - Add authels plugin to support Marvell FC-SP encryption jscSLE-20151 Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. bsc1191435 - CVE-2021-41990: Fixed an integer...

7.5CVSS7.6AI score0.06438EPSS
Exploits0References5
OSV
OSV
added 2021/10/18 12:0 a.m.26 views

DSA-4989-1 strongswan - security update

Bulletin has no description...

7.5CVSS7.6AI score0.06438EPSS
Exploits0
OSV
OSV
added 2020/03/23 2:32 p.m.7 views

SUSE-SU-2020:0743-1 Security update for strongswan

This update for strongswan fixes the following issues: Strongswan was updated to version 5.8.2 jscSLE-11370. Security issue fixed: - CVE-2018-6459: Fixed a DoS vulnerability in the parser for PKCS1 RSASSA-PSS signatures that was caused by insufficient input validation bsc1079548. Full changelogs:...

5.3CVSS6.9AI score0.01069EPSS
Exploits0References3
OSV
OSV
added 2019/12/11 10:19 a.m.5 views

SUSE-SU-2019:3266-1 Security update for strongswan

This update for strongswan provides the following fixes: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed...

7.5CVSS7.2AI score0.07124EPSS
Exploits0References12
OSV
OSV
added 2019/11/30 11:16 p.m.9 views

OPENSUSE-SU-2019:2598-1 Security update for strongswan

This update for strongswan fixes the following issues: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed a...

7.5CVSS7.2AI score0.07124EPSS
Exploits0References10
OSV
OSV
added 2019/11/30 7:16 p.m.8 views

OPENSUSE-SU-2019:2594-1 Security update for strongswan

This update for strongswan fixes the following issues: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed a...

7.5CVSS7.2AI score0.07124EPSS
Exploits0References10
OSV
OSV
added 2017/08/11 2:58 p.m.3 views

SUSE-SU-2017:2143-1 Security update for strongswan

This update for strongswan fixes the following issues: CVE-2017-11185: Specific RSA signatures passed to the gmp plugin for verification can cause a null-pointer dereference and it may lead to a denial of service bsc1051222...

7.5CVSS7.4AI score0.02825EPSS
Exploits0References3
OSV
OSV
added 2017/06/01 11:13 a.m.4 views

SUSE-SU-2017:1473-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2017-9022: Insufficient Input Validation in gmp Plugin leads to Denial of service bsc1039514 - CVE-2017-9023: Incorrect x509 ASN.1 parser error handling could lead to Denial of service bsc1039515 - IKEv1 protocol is vulnerable to DoS...

7.5CVSS7.4AI score0.02222EPSS
Exploits0References6
OSV
OSV
added 2017/06/01 11:12 a.m.7 views

SUSE-SU-2017:1471-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2017-9022: Insufficient Input Validation in gmp Plugin leads to Denial of service bsc1039514 - CVE-2017-9023: Incorrect x509 ASN.1 parser error handling could lead to Denial of service bsc1039515...

7.5CVSS7.4AI score0.02222EPSS
Exploits0References5
OSV
OSV
added 2015/12/21 7:0 p.m.6 views

SUSE-SU-2015:2183-1 Security update for strongswan

The strongswan package was updated to fix the following security issue: - CVE-2015-8023: Fixed an authentication bypass vulnerability in the eap-mschapv2 plugin bsc953817...

5CVSS6.5AI score0.02582EPSS
Exploits0References3
OSV
OSV
added 2015/12/21 7:0 p.m.5 views

SUSE-SU-2015:2183-2 Security update for strongswan

The strongswan package was updated to fix the following security issue: - CVE-2015-8023: Fixed an authentication bypass vulnerability in the eap-mschapv2 plugin bsc953817...

5CVSS6.5AI score0.02582EPSS
Exploits0References3
Rows per page
Query Builder