Ubuntu 25.10 strongSwan Important Denial Of Service USN-8196-1

ubuntu

April 22, 2026

Several security issues were fixed in strongSwan.

Summary

Several security issues were fixed in strongSwan.

Software Description:

- strongswan: IPsec VPN solution

Details:

Haruto Kimura discovered that strongSwan incorrectly handled the

supported_versions extension in TLS. A remote attacker could possibly use

this issue to cause strongSwan to stop responding, resulting in a denial

of service. (CVE-2026-35328)

Haruto Kimura discovered that strongSwan incorrectly handled certain

encrypted PKCS#7 containers. A remote attacker could possibly use this

issue to cause strongSwan to crash, resulting in a denial of service.

(CVE-2026-35329)

Lukas Johannes Moeller discovered that strongSwan incorrectly handled

certain EAP-SIM/AKA attributes. A remote attacker could use this issue to

cause strongSwan to stop responding, resulting in a denial of service, or

possibly execute arbitrary code. (CVE-2026-35330)

Haruto Kimura discovered that strongSwan incorrectly handled processing of

X.509 name constraints. A remote attacker could possibly use this...

Read the Full Advisory

Topics Covered

security advisory denial of service remote attack Ubuntu important strongSwan

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  libstrongswan                   6.0.1-6ubuntu4.3
  strongswan                      6.0.1-6ubuntu4.3

Ubuntu 24.04 LTS
  libstrongswan                   5.9.13-2ubuntu4.24.04.3
  strongswan                      5.9.13-2ubuntu4.24.04.3

Ubuntu 22.04 LTS
  libstrongswan                   5.9.5-2ubuntu2.6
  strongswan                      5.9.5-2ubuntu2.6

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8196-1

CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35331,

CVE-2026-35332, CVE-2026-35333, CVE-2026-35334

Severity

important

Lowest

Low

Medium

High

Critical

Ubuntu Security Notice USN-8196-1

Topics Covered

security advisory denial of service remote attack Ubuntu important strongSwan

Package Information

https://launchpad.net/ubuntu/+source/strongswan/6.0.1-6ubuntu4.3

https://launchpad.net/ubuntu/+source/strongswan/5.9.13-2ubuntu4.24.04.3

https://launchpad.net/ubuntu/+source/strongswan/5.9.5-2ubuntu2.6

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Ubuntu 25.10 strongSwan Important Denial Of Service USN-8196-1

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Ubuntu 25.10 strongSwan Important Denial Of Service USN-8196-1

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!