CVE 2018-17540
The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.
Related bugs and status
CVE-2018-17540 (Candidate) is related to these bugs:
Bug #1773956: [apparmor] missing entry for CLUSTERIP (used by strongswan HA plugin)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1773956 | [apparmor] missing entry for CLUSTERIP (used by strongswan HA plugin) | strongswan (Ubuntu) | High | Fix Released | ||
1773956 | [apparmor] missing entry for CLUSTERIP (used by strongswan HA plugin) | strongswan (Ubuntu Cosmic) | Undecided | Fix Released | ||
1773956 | [apparmor] missing entry for CLUSTERIP (used by strongswan HA plugin) | strongswan (Ubuntu Bionic) | Undecided | Fix Released |
Bug #1780534: Default usr.lib.ipsec.stroke profile causes segfault for 'ipsec status'
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1780534 | Default usr.lib.ipsec.stroke profile causes segfault for 'ipsec status' | AppArmor | Undecided | New | ||
1780534 | Default usr.lib.ipsec.stroke profile causes segfault for 'ipsec status' | strongswan (Ubuntu) | Low | Fix Released | ||
1780534 | Default usr.lib.ipsec.stroke profile causes segfault for 'ipsec status' | strongswan (Ubuntu Cosmic) | Undecided | Fix Released | ||
1780534 | Default usr.lib.ipsec.stroke profile causes segfault for 'ipsec status' | strongswan (Ubuntu Bionic) | Undecided | Fix Released |
Bug #1795813: fix for SIGSEGV when using mysql plugin
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1795813 | fix for SIGSEGV when using mysql plugin | strongswan (Ubuntu) | Medium | Fix Released |
Bug #1804798: strongSwan Vulnerability (CVE-2018-17540)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1804798 | strongSwan Vulnerability (CVE-2018-17540) | strongswan (Ubuntu) | Undecided | Fix Released | ||
1804798 | strongSwan Vulnerability (CVE-2018-17540) | Ubuntu on IBM z Systems | Undecided | Fix Released |
Bug #1806401: Please merge a 5.7.x version for Ubuntu 19.04
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1806401 | Please merge a 5.7.x version for Ubuntu 19.04 | strongswan (Ubuntu) | High | Fix Released |
See the
CVE page on Mitre.org
for more details.