strongSwan: Multiple vulnerabilities Multiple vulnerabilities have been found in strongSwan, possibly allowing remote attackers to authenticate as other users or cause a Denial of Service condition. strongswan 2013-09-01 2013-09-01 468504 479396 483202 remote 5.1.0 5.1.0

strongSwan is an IPSec implementation for Linux.

Multiple vulnerabilities have been discovered in strongSwan. Please review the CVE identifiers referenced below for details.

A remote attacker could use ECDSA to authenticate as another user with an invalid signature. Additionally, a remote attacker could send a specially crafted request, possibly resulting in a Denial of Service.

There is no known workaround at this time.

All strongSwan users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/strongswan-5.1.0" CVE-2013-2054 CVE-2013-2944 CVE-2013-5018 creffett creffett