CVE-2021-41991
Published: 18 October 2021
The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less-often-used cache entry by means of a random number generator, but this is not done correctly. Remote code execution might be a slight possibility.
Priority
Medium
CVSS 3 base score: 7.5
Status
| Package | Release | Status |
|---|---|---|
|
strongswan Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
| Ubuntu 21.10 (Impish Indri) |
Released
(5.9.1-1ubuntu3.1)
|
|
| Ubuntu 21.04 (Hirsute Hippo) |
Released
(5.9.1-1ubuntu1.2)
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Released
(5.8.2-1ubuntu3.3)
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Released
(5.6.2-1ubuntu2.7)
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Released
(5.3.5-1ubuntu3.8+esm1)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Released
(5.1.2-0ubuntu2.11+esm1)
|