A vulnerability in libtls related to the processing of the supported_versions extension in TLS was discovered in strongSwan that can result in an infinite loop. All versions since 5.9.2 are affected.
A vulnerability in libtls related to the processing of the supported_versions extension in TLS was discovered in strongSwan that can result in an infinite loop. All versions since 5.9.2 are affected.
We are happy to announce the release of strongSwan 6.0.6, which fixes seven vulnerabilities and comes with several other improvements and fixes.
We are happy to announce the release of strongSwan 6.0.5, which fixes a vulnerability in the eap-ttls plugin, supports forwarding certain ICMP errors that don't match the negotiated traffic selectors and comes with several other improvements and fixes.
A vulnerability in the eap-ttls plugin related to processing EAP-TTLS AVPs was discovered in strongSwan that can result in resource exhaustion or a crash. All versions since 4.5.0 are affected.
A vulnerability in the NetworkManager plugin that potentially allows using credentials of other local users was discovered in strongSwan. All versions are affected.
We are happy to announce the release of strongSwan 6.0.4, which fixes a vulnerability in the NetworkManager plugin, combines concurrent CRL fetches, and comes with several other improvements and fixes.
A vulnerability in the eap-mschapv2 plugin related to processing Failure Request packets on the client was discovered in strongSwan that can result in a heap-based buffer overflow and potentially remote code execution. All versions since 4.2.12 are affected.
We are happy to announce the release of strongSwan 6.0.3, which fixes a vulnerability in the eap-mschapv2 plugin, adds a new event to receive alerts via VICI, supports referencing on-device certificates in managed profiles of the Android app, and comes with several other new features and fixes.