FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

strongswan - denial-of-service vulnerability in the gmp plugin/denial-of-service vulnerability in the in-memory certificate cache

Affected packages
strongswan < 5.9.4

Details

VuXML ID 58528a94-5100-4208-a04d-edc01598cf01
Discovery 2021-10-04
Entry 2022-01-25

Strongswan Release Notes reports:

Fixed a denial-of-service vulnerability in the gmp plugin that was caused by an integer overflow when processing RSASSA-PSS signatures with very large salt lengths. This vulnerability has been registered as CVE-2021-41990.

Fixed a denial-of-service vulnerability in the in-memory certificate cache if certificates are replaced and a very large random value caused an integer overflow. This vulnerability has been registered as CVE-2021-41991.

References

CVE Name CVE-2021-41990
CVE Name CVE-2021-41991
URL https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-(cve-2021-41990).html
URL https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-(cve-2021-41991).html