[ubuntu/noble-proposed] strongswan 5.9.11-1ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Nov 20 16:29:12 UTC 2023 

strongswan (5.9.11-1ubuntu2) noble; urgency=medium

  * SECURITY UPDATE: Buffer Overflow When Handling DH Public Values
    - debian/patches/CVE-2023-41913.patch: Validate DH public key to fix
      potential buffer overflow in
      src/charon-tkm/src/tkm/tkm_diffie_hellman.c.
    - CVE-2023-41913

Date: Tue, 07 Nov 2023 11:43:00 +0200
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/strongswan/5.9.11-1ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 07 Nov 2023 11:43:00 +0200
Source: strongswan
Built-For-Profiles: noudeb
Architecture: source
Version: 5.9.11-1ubuntu2
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 strongswan (5.9.11-1ubuntu2) noble; urgency=medium
 .
   * SECURITY UPDATE: Buffer Overflow When Handling DH Public Values
     - debian/patches/CVE-2023-41913.patch: Validate DH public key to fix
       potential buffer overflow in
       src/charon-tkm/src/tkm/tkm_diffie_hellman.c.
     - CVE-2023-41913
Checksums-Sha1:
 9002b8e8cc51d29a4a9774c06ee8710b4f0518b9 3471 strongswan_5.9.11-1ubuntu2.dsc
 c645a54f3b1245df654ab328d6b22122899cb2b8 133000 strongswan_5.9.11-1ubuntu2.debian.tar.xz
 3e248c4afc08d022dcfc7c67398249224abec968 10228 strongswan_5.9.11-1ubuntu2_source.buildinfo
Checksums-Sha256:
 1743a4a8527240a546661d6eaac2c850e2b643ade9d0eae15bbd35d839d597e6 3471 strongswan_5.9.11-1ubuntu2.dsc
 a2de95ca0d970aabdce06ccc0304560774dc7189eb836fb11f1d5e0a85704193 133000 strongswan_5.9.11-1ubuntu2.debian.tar.xz
 c77d8ce157c58d71d757d299cfddc7acbec5057c490cf4f05bc566c875d07999 10228 strongswan_5.9.11-1ubuntu2_source.buildinfo
Files:
 0fc94f81337c71ceb99d06dbd47c4c81 3471 net optional strongswan_5.9.11-1ubuntu2.dsc
 48fec76c1c7d55603e37c5eb32a67bb8 133000 net optional strongswan_5.9.11-1ubuntu2.debian.tar.xz
 a5f358fa7da89b17c606a48f3af87fac 10228 net optional strongswan_5.9.11-1ubuntu2_source.buildinfo
Original-Maintainer: strongSwan Maintainers <pkg-swan-devel at lists.alioth.debian.org>

More information about the noble-changes mailing list