strongSwan 4.2.6 and earlier allows remote attackers to cause a denial of
service (daemon crash) via an IKE_SA_INIT message with a large number of
NULL values in a Key Exchange payload, which triggers a NULL pointer
dereference for the return value of the mpz_export function in the GNU
Multiprecision Library (GMP).