Ubuntu CVE Tracker

Merge lp:~sdeziel/ubuntu-cve-tracker/strongswan into lp:~ubuntu-security/ubuntu-cve-tracker/master

  1. strongswan
  2. Merge into master
Proposed by Simon Déziel
Status: Merged
Merged at revision: 13087
Proposed branch: lp:~sdeziel/ubuntu-cve-tracker/strongswan
Merge into: lp:~ubuntu-security/ubuntu-cve-tracker/master
Diff against target: 30 lines (+26/-0)
1 file modified
active/CVE-2017-11185 (+26/-0)
To merge this branch: bzr merge lp:~sdeziel/ubuntu-cve-tracker/strongswan
Reviewer Review Type Date Requested Status
Steve Beattie Approve
Review via email: mp+328990@code.launchpad.net

Description of the change

It's my first MP on this repo so please let me know if I missed something.

To post a comment you must log in.
Revision history for this message
Steve Beattie (sbeattie) wrote :

Looks fine, merged with a couple of touchups. Thanks1

review: Approve
Revision history for this message
Simon Déziel (sdeziel) wrote :

Thanks Steve.

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== added file 'active/CVE-2017-11185'
2--- active/CVE-2017-11185 1970-01-01 00:00:00 +0000
3+++ active/CVE-2017-11185 2017-08-14 16:23:00 +0000
4@@ -0,0 +1,26 @@
5+Candidate: CVE-2017-11185
6+PublicDate: 2017-08-14
7+References:
8+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11185
9+ https://www.strongswan.org/blog/2017/08/14/strongswan-vulnerability-(cve-2017-11185).html
10+Description:
11+ The gmp plugin in strongSwan before 5.6.0 can cause a null-pointer dereference
12+ when verifying specific RSA signatures in certificates or IKE authentication
13+ resulting in a denial of service.
14+Ubuntu-Description:
15+Notes: Remote code execution is not possible.
16+Bugs:
17+Priority: medium
18+Discovered-by: oss-fuzz
19+Assigned-to:
20+
21+Patches_strongswan:
22+ upstream: https://wiki.strongswan.org/projects/strongswan/repository/revisions/ef5c37fcdf47273feea320091598135688df4ef7
23+ upstream: https://download.strongswan.org/security/CVE-2017-11185/strongswan-4.4.0-5.5.3_gmp_mpz_export.patch
24+upstream_strongswan: released (5.6.0)
25+precise/esm_strongswan: DNE
26+trusty_strongswan: needed
27+vivid/ubuntu-core_strongswan: DNE
28+xenial_strongswan: needed
29+zesty_strongswan: needed
30+devel_strongswan: needed