UbuntuUpdates.org

Package "strongswan"

Name: strongswan

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • standalone IPsec client
  • strongSwan IPsec client, systemd support
  • strongSwan charon library (extra plugins)
  • strongSwan utility and crypto library (extra plugins)

Latest version: 5.9.5-2ubuntu2.2
Release: jammy (22.04)
Level: updates
Repository: universe

Links



Other versions of "strongswan" in Jammy

Repository Area Version
base main 5.9.5-2ubuntu2
base universe 5.9.5-2ubuntu2
security main 5.9.5-2ubuntu2.2
security universe 5.9.5-2ubuntu2.2
updates main 5.9.5-2ubuntu2.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.9.5-2ubuntu2.2 2023-11-20 18:07:54 UTC

  strongswan (5.9.5-2ubuntu2.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Buffer Overflow When Handling DH Public Values
    - debian/patches/CVE-2023-41913.patch: Validate DH public key to fix
      potential buffer overflow in
      src/charon-tkm/src/tkm/tkm_diffie_hellman.c.
    - CVE-2023-41913

 -- Marc Deslauriers <email address hidden> Tue, 07 Nov 2023 11:46:10 +0200

Source diff to previous version

Version: 5.9.5-2ubuntu2.1 2022-10-03 19:07:13 UTC

  strongswan (5.9.5-2ubuntu2.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Using Untrusted URIs for Revocation Checking
    - debian/patches/CVE-2022-40617.patch: do online revocation checks only
      after basic trust chain validation in
      src/libstrongswan/credentials/credential_manager.c.
    - CVE-2022-40617

 -- Marc Deslauriers <email address hidden> Tue, 20 Sep 2022 14:07:10 -0400

CVE-2022-40617 RESERVED



About   -   Send Feedback to @ubuntu_updates