FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

strongswan -- buffer overflow

Affected packages
null < 5.9.12


VuXML ID bbda3d16-968e-11ee-b780-b42e991fc52e
Discovery 2023-12-07
Entry 2023-12-09 reports:

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.


CVE Name CVE-2023-41913