Oval Definition:	oval:com.ubuntu.trusty:def:20179022000
Revision Date: 2017-06-08 Version: 1 Title: CVE-2017-9022 on Ubuntu 14.04 LTS (trusty) - medium. Description: The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-9022 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'strongswan' package in trusty was vulnerable but has been fixed (note: '5.1.2-0ubuntu2.6').
BACK