CVE 2015-3991
strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code.
Related bugs and status
CVE-2015-3991 (Candidate) is related to these bugs:
Bug #1309594: kernel-libipsec not loading
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1309594 | kernel-libipsec not loading | strongswan (Ubuntu) | Medium | Fix Released | ||
1309594 | kernel-libipsec not loading | strongswan (Ubuntu Trusty) | Undecided | Won't Fix |
Bug #1330504: strongSwan 5.1.3
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1330504 | strongSwan 5.1.3 | strongswan (Ubuntu) | High | Fix Released |
Bug #1333655: strongSwan AppArmor profile does not allow user priv dropping
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1333655 | strongSwan AppArmor profile does not allow user priv dropping | strongswan (Ubuntu) | Wishlist | Fix Released |
Bug #1448870: Certificate policies cause rejections
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1448870 | Certificate policies cause rejections | strongswan (Ubuntu) | Undecided | Fix Released |
Bug #1451091: new upstream version 5.2.2
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1451091 | new upstream version 5.2.2 | strongswan (Ubuntu) | Wishlist | Fix Released |
Bug #1470277: strongswan apparmor profile doesn't permit xauth-pam
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1470277 | strongswan apparmor profile doesn't permit xauth-pam | strongswan (Ubuntu) | Undecided | Fix Released |
Bug #1505222: strongSwan AppArmor prevents CRL caching
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1505222 | strongSwan AppArmor prevents CRL caching | strongswan (Ubuntu) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.