GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Mon Nov 26, 2018 8:26 pm Post subject: [ GLSA 201811-16 ] strongSwan |
 |
|
Gentoo Linux Security Advisory
Title: strongSwan: Multiple vulnerabilities (GLSA 201811-16)
Severity: normal
Exploitable: remote
Date: 2018-11-26
Bug(s): #648610, #656338, #658230, #668862
ID: 201811-16
Synopsis
Multiple vulnerabilities have been found in strongSwan, the worst
of which could lead to a Denial of Service condition.
Background
strongSwan is an IPSec implementation for Linux.
Affected Packages
Package: net-vpn/strongswan
Vulnerable: < 5.7.1
Unaffected: >= 5.7.1
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in strongSwan. Please
review the CVE identifiers referenced below for details.
Impact
A remote attacker could cause a Denial of Service condition or
impersonate a user.
Workaround
There is no known workaround at this time.
Resolution
All strongSwan users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=net-vpn/strongswan-5.7.1"
|
References
CVE-2018-10811
CVE-2018-16151
CVE-2018-16152
CVE-2018-17540
CVE-2018-5388
CVE-2018-6459 |
|
News & Announcements
