1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4309-1] strongswan security update

    From Yves-Alexis Perez@1:229/2 to All on Tue Oct 2 09:40:01 2018
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4309-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 01, 2018 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : strongswan
    CVE ID : CVE-2018-17540

    Google's OSS-Fuzz revealed an exploitable bug in the gmp plugin caused by the patch that fixes CVE-2018-16151 and CVE-2018-16151 (DSA-4305-1).

    An attacker could trigger it using crafted certificates with RSA keys with
    very small moduli. Verifying signatures with such keys would cause an integer underflow and subsequent heap buffer overflow resulting in a crash of the daemon. While arbitrary code execution is not completely ruled out because of the heap buffer overflow, due to the form of the data written to the buffer
    it seems difficult to actually exploit it in such a way.

    For the stable distribution (stretch), this problem has been fixed in
    version 5.5.1-4+deb9u4.

    We recommend that you upgrade your strongswan packages.

    For the detailed security status of strongswan please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/strongswan

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQEzBAEBCgAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAluzH80ACgkQ3rYcyPpX RFvI5wf8DILbxELj4t7YjgZyT0pKzqSm2fDVO/Xjl6hj0Fnf6XidEvNx764NFoCo x6MBILJohIAbzZo/3sT41vAuKKMfiasuUY0KSz4hHgRlwLqiNBOOTuKrR1PhrtmS BKJg9PRfi0a+dwb2J0+UkKcaZQYMItqEBCjsZkF46lBFSx+dgs6spbSy3MmiY0ve szxg/JyRLS6WLE87R8AUrBskPwcYu3jhjg53E02VnpKB+UXXb6NWC9D2zlpWRilx 9RQPofwjWNYoM7pM1QITPuUeFR5ia+7X7BA9SL7McMV6BWGimVCDEMZshTpqRTME dOx9vpXrO5JZwMFk2hkxhFoA6ewo2g==
    =L68k
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)