Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 18 Jul 2017 10:07:02 +0000
From:      bugzilla-noreply@freebsd.org
To:        freebsd-ports-bugs@FreeBSD.org
Subject:   [Bug 220823] security/strongswan: [security] Update to the latest version (v5.5.3), current (v5.5.2) is vulnerable
Message-ID:  <bug-220823-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D220823

            Bug ID: 220823
           Summary: security/strongswan: [security] Update to the latest
                    version (v5.5.3), current (v5.5.2) is vulnerable
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs@FreeBSD.org
          Reporter: i.dani@outlook.com
                CC: strongswan@Nanoteq.com
                CC: strongswan@Nanoteq.com
             Flags: maintainer-feedback?(strongswan@Nanoteq.com)

The current version avilable for FreeBSD is vulnerable since 30.05.2017 and=
 has
already been patched upstream. The current contains two DoS-vuln's.

Changelog: https://wiki.strongswan.org/versions/65

Available version: 5.5.2
Patched version: 5.5.3

Security:
- Fixed a DoS vulnerability in the gmp plugin that was caused by insufficie=
nt
input validation when verifying RSA signatures. More specifically,
mpz_powm_sec() has two requirements regarding the passed exponent and modul=
us
that the plugin did not enforce, if these are not met the calculation will
result in a floating point exception that crashes the whole process.

This vulnerability has been registered as CVE-2017-9022 [1].
Please refer to our blog for details. [2]

- Fixed a DoS vulnerability in the x509 plugin that was caused because the
ASN.1 parser didn't handle ASN.1 CHOICE types properly, which could result =
in
an infinite loop when parsing X.509 extensions that use such types.

This vulnerability has been registered as CVE-2017-9023 [3].
Please refer to our blog for details. [4]

[1] https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=3D2017-9022
[2]
https://www.strongswan.org/blog/2017/05/30/strongswan-vulnerability-(cve-20=
17-9022).html
[3] https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=3D2017-9023
[4]
https://www.strongswan.org/blog/2017/05/30/strongswan-vulnerability-(cve-20=
17-9023).html

--=20
You are receiving this mail because:
You are the assignee for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-220823-13>