The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html | |
http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html | |
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html | |
https://download.strongswan.org/security/CVE-2018-17540/ | Patch Vendor Advisory |
https://lists.debian.org/debian-lts-announce/2018/10/msg00001.html | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/201811-16 | Third Party Advisory |
https://usn.ubuntu.com/3774-1/ | Third Party Advisory |
https://www.debian.org/security/2018/dsa-4309 | Third Party Advisory |
https://www.strongswan.org/blog/2018/10/01/strongswan-vulnerability-%28cve-2018-17540%29.html |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-10-03T20:00:00
Updated: 2020-03-30T00:06:03
Reserved: 2018-09-26T00:00:00
Link: CVE-2018-17540
JSON object: View
NVD Information
Status : Modified
Published: 2018-10-03T20:29:09.990
Modified: 2023-11-07T02:54:31.607
Link: CVE-2018-17540
JSON object: View
Redhat Information
No data.
CWE