Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:0492-1

Опубликовано: 18 фев. 2022
Источник: suse-cvrf

Описание

Security update for strongswan

This update for strongswan fixes the following issues:

  • CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471)

Список пакетов

SUSE Enterprise Storage 7
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
strongswan-nm-5.8.2-11.24.1
SUSE Linux Enterprise Real Time 15 SP2
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Server 15 SP2-BCL
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Server 15 SP2-LTSS
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Linux Enterprise Workstation Extension 15 SP3
strongswan-nm-5.8.2-11.24.1
SUSE Manager Proxy 4.1
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Manager Retail Branch Server 4.1
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1
SUSE Manager Server 4.1
strongswan-5.8.2-11.24.1
strongswan-doc-5.8.2-11.24.1
strongswan-hmac-5.8.2-11.24.1
strongswan-ipsec-5.8.2-11.24.1
strongswan-libs0-5.8.2-11.24.1

Ссылки

Описание

In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication.

Затронутые продукты
SUSE Enterprise Storage 7:strongswan-5.8.2-11.24.1
SUSE Enterprise Storage 7:strongswan-doc-5.8.2-11.24.1
SUSE Enterprise Storage 7:strongswan-hmac-5.8.2-11.24.1
SUSE Enterprise Storage 7:strongswan-ipsec-5.8.2-11.24.1
Ссылки