DSA-5249-1 strongswan -- strongswanID: oval:org.secpod.oval:def:88411 | Date: (C)2023-03-28 (M)2023-11-13 |
Class: PATCH | Family: unix |
Lahav Schlesinger discovered a vulnerability in the revocation plugin of strongSwan, an IKE/IPsec suite. The revocation plugin uses OCSP URIs and CRL distribution points which come from certificates provided by the remote endpoint. The plugin didn"t check for the certificate chain of trust before using those URIs, so an attacker could provided a crafted certificate containing URIs pointing to servers under their control, potentially leading to denial-of-service attacks.
Product: |
libcharon-extra-plugins |
libstrongswan |
libcharon-extauth-plugins |
charon-systemd |
strongswan |
charon-cmd |