Ubuntu
strongswan package

ubuntu/+source/strongswan:applied/ubuntu/cosmic

Git
lp:ubuntu/+source/strongswan
applied/ubuntu/cosmic

Last commit made on 2018-10-04

Get this branch:: git clone -b applied/ubuntu/cosmic https://git.launchpad.net/ubuntu/+source/strongswan

Members of git-ubuntu import can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:: applied/ubuntu/cosmic

Repository:: lp:ubuntu/+source/strongswan

Recent commits

976751f... by Andreas Hasenack on 2018-10-04

5.6.3-1ubuntu4 (patches applied)

Imported using git-ubuntu import.

50fc26d... by Andreas Hasenack on 2018-10-04

[PATCH] gmp: Fix buffer overflow with very small RSA keys

Gbp-Pq: strongswan-4.4.0-5.7.0_gmp-pkcs1-overflow.patch.

0006bc0... by Andreas Hasenack on 2018-10-04

[PATCH] gmp: Don't parse PKCS1 v1.5 RSA signatures to verify them

Gbp-Pq: strongswan-5.6.1-5.6.3_gmp-pkcs1-verify.patch.

f974f55... by Andreas Hasenack on 2018-10-04

dont-load-kernel-libipsec-plugin-by-default.patch

No DEP3 Subject or Description header found

Gbp-Pq: dont-load-kernel-libipsec-plugin-by-default.patch.

781fa26... by Andreas Hasenack on 2018-10-04

04_disable-libtls-tests.patch

No DEP3 Subject or Description header found

Gbp-Pq: 04_disable-libtls-tests.patch.

d4227d0... by Andreas Hasenack on 2018-10-04

03_systemd-service.patch

No DEP3 Subject or Description header found

Gbp-Pq: 03_systemd-service.patch.

67a1654... by Andreas Hasenack on 2018-10-04

02_disable-bypass-lan.patch

No DEP3 Subject or Description header found

Gbp-Pq: 02_disable-bypass-lan.patch.

256feed... by Andreas Hasenack on 2018-10-04

01_fix-manpages.patch

No DEP3 Subject or Description header found

Gbp-Pq: 01_fix-manpages.patch.

bb63f8a... by Andreas Hasenack on 2018-10-04

changelog

996a1df... by Christian Ehrhardt  on 2018-08-20

fix apparmor denies reading the own FDs (LP: #1786250)

As per LP #1786250, user noted audit failures in system log
against charon trying to read its own list of file descriptors
in /proc/<pid>/fd/.

We are uncertain when/why this started, however it is not
unreasonable for a process to attempt to read its own fd's,
so allow by extending the apparmor profile for charon.

References:
http://manpages.ubuntu.com/manpages/bionic/en/man5/apparmor.d.5.html
https://linux.die.net/man/5/proc

»