Описание
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows remote attackers to cause a denial of service (infinite loop) via a crafted certificate.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 5.5.1-4ubuntu1 |
| esm-infra-legacy/trusty | released | 5.1.2-0ubuntu2.6 |
| esm-infra/xenial | released | 5.3.5-1ubuntu3.3 |
| precise/esm | DNE | |
| trusty | released | 5.1.2-0ubuntu2.6 |
| trusty/esm | released | 5.1.2-0ubuntu2.6 |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 5.3.5-1ubuntu3.3 |
Показывать по
EPSS
4.3 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows remote attackers to cause a denial of service (infinite loop) via a crafted certificate.
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows remote attackers to cause a denial of service (infinite loop) via a crafted certificate.
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE ...
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows remote attackers to cause a denial of service (infinite loop) via a crafted certificate.
EPSS
4.3 Medium
CVSS2
7.5 High
CVSS3