Security update for strongswan SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2021:1399-1 Final 1 1 2021-10-31T14:52:34Z current 2021-10-31T14:52:34Z 2021-10-31T14:52:34Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for strongswan This update for strongswan fixes the following issues: A feature was added: - Add auth_els plugin to support Marvell FC-SP encryption (jsc#SLE-20151) Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. (bsc#1191435) - CVE-2021-41990: Fixed an integer Overflow in the gmp Plugin. (bsc#1191367) This update was imported from the SUSE:SLE-15-SP2:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2021-1399 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EFL7BNFHRF7ZQZFGAWEPQ7ZQHD6T6CNA/ E-Mail link for openSUSE-SU-2021:1399-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1191367 SUSE Bug 1191367 https://bugzilla.suse.com/1191435 SUSE Bug 1191435 https://www.suse.com/security/cve/CVE-2021-41990/ SUSE CVE CVE-2021-41990 page https://www.suse.com/security/cve/CVE-2021-41991/ SUSE CVE CVE-2021-41991 page openSUSE Leap 15.2 strongswan-5.8.2-lp152.2.18.1 strongswan-doc-5.8.2-lp152.2.18.1 strongswan-hmac-5.8.2-lp152.2.18.1 strongswan-ipsec-5.8.2-lp152.2.18.1 strongswan-libs0-5.8.2-lp152.2.18.1 strongswan-mysql-5.8.2-lp152.2.18.1 strongswan-nm-5.8.2-lp152.2.18.1 strongswan-sqlite-5.8.2-lp152.2.18.1 strongswan-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-doc-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-hmac-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-ipsec-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-libs0-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-mysql-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-nm-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 strongswan-sqlite-5.8.2-lp152.2.18.1 as a component of openSUSE Leap 15.2 The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signature. For example, this can be triggered by an unrelated self-signed CA certificate sent by an initiator. Remote code execution cannot occur. CVE-2021-41990 openSUSE Leap 15.2:strongswan-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-doc-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-hmac-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-ipsec-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-libs0-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-mysql-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-nm-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-sqlite-5.8.2-lp152.2.18.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EFL7BNFHRF7ZQZFGAWEPQ7ZQHD6T6CNA/ https://www.suse.com/security/cve/CVE-2021-41990.html CVE-2021-41990 https://bugzilla.suse.com/1191367 SUSE Bug 1191367 The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less-often-used cache entry by means of a random number generator, but this is not done correctly. Remote code execution might be a slight possibility. CVE-2021-41991 openSUSE Leap 15.2:strongswan-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-doc-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-hmac-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-ipsec-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-libs0-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-mysql-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-nm-5.8.2-lp152.2.18.1 openSUSE Leap 15.2:strongswan-sqlite-5.8.2-lp152.2.18.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EFL7BNFHRF7ZQZFGAWEPQ7ZQHD6T6CNA/ https://www.suse.com/security/cve/CVE-2021-41991.html CVE-2021-41991 https://bugzilla.suse.com/1191367 SUSE Bug 1191367 https://bugzilla.suse.com/1191435 SUSE Bug 1191435 https://bugzilla.suse.com/1192640 SUSE Bug 1192640