It was discovered that strongSwan incorrectly handled certain RSASSA-PSS signatures. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service. (CVE-2021-41990)
It was discovered that strongSwan incorrectly handled replacing certificates in the cache. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-41991)
{ "availability": "No subscription required", "binaries": [ { "binary_name": "charon-cmd", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "charon-systemd", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "libcharon-extra-plugins", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "libcharon-standard-plugins", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "libstrongswan", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "libstrongswan-extra-plugins", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "libstrongswan-standard-plugins", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-charon", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-libcharon", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-nm", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-pki", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-scepclient", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-starter", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-swanctl", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-tnc-base", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-tnc-client", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-tnc-ifmap", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-tnc-pdp", "binary_version": "5.6.2-1ubuntu2.7" }, { "binary_name": "strongswan-tnc-server", "binary_version": "5.6.2-1ubuntu2.7" } ] }
{ "cves_map": { "ecosystem": "Ubuntu:18.04:LTS", "cves": [ { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2021-41990" }, { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2021-41991" } ] } }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "charon-cmd", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "charon-systemd", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libcharon-extauth-plugins", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libcharon-extra-plugins", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libcharon-standard-plugins", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libstrongswan", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libstrongswan-extra-plugins", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "libstrongswan-standard-plugins", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-charon", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-libcharon", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-nm", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-pki", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-scepclient", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-starter", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-swanctl", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-tnc-base", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-tnc-client", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-tnc-ifmap", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-tnc-pdp", "binary_version": "5.8.2-1ubuntu3.3" }, { "binary_name": "strongswan-tnc-server", "binary_version": "5.8.2-1ubuntu3.3" } ] }
{ "cves_map": { "ecosystem": "Ubuntu:20.04:LTS", "cves": [ { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2021-41990" }, { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2021-41991" } ] } }