Date: Tue, 22 Aug 2017 15:37:42 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 221716] security/strongswan: Update to 5.6.0 (Fix security vulnerability) Message-ID: <bug-221716-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D221716 Bug ID: 221716 Summary: security/strongswan: Update to 5.6.0 (Fix security vulnerability) Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: freebsd-ports-bugs@FreeBSD.org Reporter: i.dani@outlook.com CC: strongswan@Nanoteq.com Flags: maintainer-feedback?(strongswan@Nanoteq.com) CC: strongswan@Nanoteq.com The current version avilable for FreeBSD is vulnerable since 14.08.2017 and= has already been patched upstream. The current contains a DoS-Vuln. Changelog: https://wiki.strongswan.org/versions/66 Available version: 5.5.3 Patched version: 5.6.0 Security: Fixed a DoS vulnerability in the gmp plugin that was caused by insufficient input validation when verifying RSA signatures, which requires decryption w= ith the operation m^e mod n, where m is the signature, and e and n are the expo= nent and modulus of the public key. The value m is an integer between 0 and n-1, however, the gmp plugin did not verify this. So if m equals n the calculati= on results in 0, in which case mpz_export() returns NULL. This result wasn't handled properly causing a null-pointer dereference. This vulnerability has been registered as CVE-2017-11185 [1]. Please refer to our blog for details. [2] [1] https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=3D2017-11185 [2] https://www.strongswan.org/blog/2017/08/14/strongswan-vulnerability-(cve-20= 17-11185).html --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-221716-13>