Information on source package strongswan

Available versions

ReleaseVersion
jessie5.2.1-6+deb8u11
stretch5.5.1-4+deb9u7
stretch (security)5.5.1-4+deb9u6
buster5.7.2-1+deb10u4
bullseye5.9.1-1+deb11u4
bookworm5.9.8-5+deb12u1
trixie5.9.13-2
sid5.9.13-2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-41913fixedvulnerablefixedfixedfixedfixedfixedstrongSwan before 5.9.12 has a buffer overflow and possible unauthenti ...
CVE-2023-26463fixedvulnerablefixedfixedfixedfixedfixedstrongSwan 5.9.8 and 5.9.9 potentially allows remote code execution be ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2018-5389vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe Internet Key Exchange v1 main mode is vulnerable to offline dictio ...

Resolved issues

BugDescription
CVE-2022-40617strongSwan before 5.9.8 allows remote attackers to cause a denial of s ...
CVE-2022-4967strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ...
CVE-2021-45079In strongSwan before 5.9.5, a malicious responder can send an EAP-Succ ...
CVE-2021-41991The in-memory certificate cache in strongSwan before 5.9.4 has a remot ...
CVE-2021-41990The gmp plugin in strongSwan before 5.9.4 has a remote integer overflo ...
CVE-2019-10155The Libreswan Project has found a vulnerability in the processing of I ...
CVE-2018-17540The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a ...
CVE-2018-16152In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp pl ...
CVE-2018-16151In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp pl ...
CVE-2018-10811strongSwan 5.6.0 and older allows Remote Denial of Service because of ...
CVE-2018-6459The rsa_pss_params_parse function in libstrongswan/credentials/keys/si ...
CVE-2018-5388In stroke_socket.c in strongSwan before 5.6.3, a missing packet length ...
CVE-2017-11185The gmp plugin in strongSwan before 5.6.0 allows remote attackers to c ...
CVE-2017-9023The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE ...
CVE-2017-9022The gmp plugin in strongSwan before 5.5.3 does not properly validate R ...
CVE-2015-8023The server implementation of the EAP-MSCHAPv2 protocol in the eap-msch ...
CVE-2015-4171strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client be ...
CVE-2015-3991strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial o ...
CVE-2014-9221strongSwan 4.5.x through 5.2.x before 5.2.1 allows remote attackers to ...
CVE-2014-2891strongSwan before 5.1.2 allows remote attackers to cause a denial of s ...
CVE-2014-2338IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypa ...
CVE-2013-6076strongSwan 5.0.2 through 5.1.0 allows remote attackers to cause a deni ...
CVE-2013-6075The compare_dn function in utils/identification.c in strongSwan 4.3.3 ...
CVE-2013-5018The is_asn1 function in strongSwan 4.1.11 through 5.0.4 does not prope ...
CVE-2013-2944strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDS ...
CVE-2013-2054Buffer overflow in the atodn function in strongSwan 2.0.0 through 4.3. ...
CVE-2012-2388The GMP Plugin in strongSwan 4.2.0 through 4.6.3 allows remote attacke ...
CVE-2010-2628The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 ...
CVE-2009-2661The asn1_length function in strongSwan 2.8 before 2.8.11, 4.2 before 4 ...
CVE-2009-2185The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongsw ...
CVE-2009-1958charon/sa/tasks/child_create.c in the charon daemon in strongSWAN befo ...
CVE-2009-1957charon/sa/ike_sa.c in the charon daemon in strongSWAN before 4.3.1 all ...
CVE-2009-0790The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.2 ...
CVE-2008-4551strongSwan 4.2.6 and earlier allows remote attackers to cause a denial ...

Security announcements

DSA / DLADescription
ELA-1012-1strongswan - security update
DLA-3663-1strongswan - security update
DSA-5560-1strongswan - security update
DLA-3143-1strongswan - security update
ELA-702-1strongswan - security update
DSA-5249-1strongswan - security update
ELA-641-1strongswan - security update
DLA-2909-1strongswan - security update
DSA-5056-1strongswan - security update
DLA-2788-1strongswan - security update
DSA-4989-1strongswan - security update
DLA-1528-1strongswan - security update
DSA-4309-1strongswan - security update
DLA-1522-1strongswan - security update
DSA-4305-1strongswan - security update
DSA-4229-1strongswan - security update
DSA-3962-1strongswan - security update
DLA-1059-1strongswan - security update
DLA-973-1strongswan - security update
DSA-3866-1strongswan - security update
DLA-345-1strongswan - security update
DSA-3398-1strongswan - security update
DLA-244-1strongswan - security update
DSA-3282-1strongswan - security update
DSA-3118-1strongswan - security update
DSA-2922-1strongswan - security update
DSA-2903-1strongswan - security update
DSA-2789-1strongswan - Denial of service and authorization bypass
DSA-2665-1strongswan - authentication bypass
DSA-2483-1strongswan - authentication bypass
DSA-1899-1strongswan - denial of service
DSA-1759-1strongswan - denial of service

Search for package or bug name: Reporting problems