Several security issues were fixed in strongSwan.
Software Description:
Details:
USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the
corresponding update to Ubuntu 26.04 LTS.
Original advisory details:
Haruto Kimura discovered that strongSwan incorrectly handled the
supported_versions extension in TLS. A remote attacker could possibly use
this issue to cause strongSwan to stop responding, resulting in a denial
of service. (CVE-2026-35328)
Haruto Kimura discovered that strongSwan incorrectly handled certain
encrypted PKCS#7 containers. A remote attacker could possibly use this
issue to cause strongSwan to crash, resulting in a denial of service.
(CVE-2026-35329)
Lukas Johannes Moeller discovered that strongSwan incorrectly handled
certain EAP-SIM/AKA attributes. A remote attacker could use this issue to
cause strongSwan to stop responding, resulting in a denial of service, or
possibly execute arbitrary code. (CVE-2026-35330)
Haruto Kimura di...
The problem can be corrected by updating your system to the following package versions: In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-8196-2
https://ubuntu.com/security/notices/USN-8196-1
CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35331,
CVE-2026-35332, CVE-2026-35333, CVE-2026-35334
Get the latest Linux and open source security news straight to your inbox.