Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2018-5388

Published: 31 May 2018

In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.

Notes

AuthorNote
mdeslaur
root needed to access socket, only DoS
Priority

Low

CVSS 3 base score: 6.5

Status

Package Release Status
strongswan
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic
Released (5.6.2-1ubuntu2.2)
precise Does not exist

trusty
Released (5.1.2-0ubuntu2.10)
upstream
Released (5.6.3)
xenial
Released (5.3.5-1ubuntu3.7)
Patches:
upstream: https://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=0acd1ab4