Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2020:0743-1 Moderate: strongswan DoS Security Fix

suse
Calendar Grey March 23, 2020
Dist Suse Esm H88
SUSE has addressed a critical vulnerability in strongswan through a security update, mitigating the risk of Denial of Service (DoS) attacks and enhancing the overall security framework.
An update that fixes one vulnerability is now available

Summary

This update for strongswan fixes the following issues: Strongswan was updated to version 5.8.2 (jsc#SLE-11370). Security issue fixed: - CVE-2018-6459: Fixed a DoS vulnerability in the parser for PKCS#1 RSASSA-PSS signatures that was caused by insufficient input validation (bsc#1079548). Full changelogs: Version 5.8.2 * Identity-based CA constraints, which enforce that the certificate chain of the remote peer contains a CA certificate with a specific identity, are supported via vici/swanctl.conf. This is similar to the existing CA constraints but doesn't require that the CA certificate is locally installed, for instance, intermediate CA certificates received from the peers. Wildcard identity matching (e.g. ..., OU=Research, CN=*) could also be used for the latter but requires trust in the

Topics%20covered

Topics Covered

security advisory update DoS vulnerability SUSE strongswan

References

#1079548

Cross- CVE-2018-6459

Affected Products:

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

SUSE Linux Enterprise Module for Basesystem 15-SP1

https://www.suse.com/security/cve/CVE-2018-6459.html

https://bugzilla.suse.com/1079548

Announcement ID: SUSE-SU-2020:0743-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory update DoS vulnerability SUSE strongswan

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here