Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Ubuntu 26.04 LTS strongSwan Advisory USN-8196-2 CVE-2026-35328 to 35334

ubuntu
Calendar Grey April 27, 2026
Dist Ubuntu Esm H88
Explore the recent security advisory for strongSwan in Ubuntu addressing multiple denial of service issues and their fixes.
Several security issues were fixed in strongSwan.

Summary

Several security issues were fixed in strongSwan.

Software Description:

Details:

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the

corresponding update to Ubuntu 26.04 LTS.

Original advisory details:

Haruto Kimura discovered that strongSwan incorrectly handled the

supported_versions extension in TLS. A remote attacker could possibly use

this issue to cause strongSwan to stop responding, resulting in a denial

of service. (CVE-2026-35328)

Haruto Kimura discovered that strongSwan incorrectly handled certain

encrypted PKCS#7 containers. A remote attacker could possibly use this

issue to cause strongSwan to crash, resulting in a denial of service.

(CVE-2026-35329)

Lukas Johannes Moeller discovered that strongSwan incorrectly handled

certain EAP-SIM/AKA attributes. A remote attacker could use this issue to

cause strongSwan to stop responding, resulting in a denial of service, or

possibly execute arbitrary code. (CVE-2026-35330)

Haruto Kimura di...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8196-2

https://ubuntu.com/security/notices/USN-8196-1

CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35331,

CVE-2026-35332, CVE-2026-35333, CVE-2026-35334

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8196-2

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here