25
I Use This!
Moderate Activity

News

Analyzed about 20 hours ago. based on code collected about 20 hours ago.
Posted about 4 years ago by tob...@strongswan.org (Tobias Brunner)
strongSwan 5.7.1 fixes a denial-of-service vulnerability in last week's 5.7.0 release and the patch for the vulnerability that was fixed with it.
Posted about 4 years ago by tob...@strongswan.org (Tobias Brunner)
A denial-of-service vulnerability in the gmp plugin was discovered in strongSwan. All versions patched with the fix for CVE-2018-16151/2 are affected.
Posted about 4 years ago by tob...@strongswan.org (Tobias Brunner)
A potential authorization bypass vulnerability in the gmp plugin was discovered in strongSwan. All versions are affected in certain configurations.
Posted about 4 years ago by tob...@strongswan.org (Tobias Brunner)
We are happy to announce the release of strongSwan 5.7.0, which brings support for SWIMA for PA-TNC, swanctl.conf/strongswan.conf syntax changes, a Botan crypto library plugin, support for Postquantum Preshared Keys for IKEv2, fixes a potential authorization bypass vulnerability, and comes with several other new features and fixes.
Posted over 4 years ago by tob...@strongswan.org (Tobias Brunner)
We are happy to announce the release of strongSwan 5.6.3, which improves certificate chain validation, updates the DHCP plugin, allows forcing the local termination of IKE_SAs, supports trap policies with virtual IPs, and fixes two potential DoS vulnerabilities and several other issues.
Posted over 4 years ago by tob...@strongswan.org (Tobias Brunner)
A denial-of-service vulnerability in the IKEv2 key derivation if the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF was discovered, all strongSwan versions since 5.0.1 may be affected.
Posted over 4 years ago by tob...@strongswan.org (Tobias Brunner)
A denial-of-service vulnerability in the stroke plugin was discovered in strongSwan. All versions are affected in certain configurations.
Posted almost 5 years ago by tob...@strongswan.org (Tobias Brunner)
We are happy to announce the release of strongSwan 5.6.2 which includes rekeying and MOBIKE improvements, supports accessing certificates in a TPM 2.0, and fixes a DoS vulnerability and several other issues.
Posted almost 5 years ago by tob...@strongswan.org (Tobias Brunner)
A denial-of-service vulnerability in the parser for RSASSA-PSS signatures was discovered in strongSwan 5.6.1.
Posted about 5 years ago by tob...@strongswan.org (Tobias Brunner)
We are happy to announce the release of strongSwan 5.6.1 which removes deprecated algorithms from default proposals, supports RSASSA-PSS signatures, and brings several other new features and fixes.