OVAL Reference oval:com.ubuntu.xenial:def:20142338000

Oval Definition:

oval:com.ubuntu.xenial:def:20142338000

Revision Date:	2014-04-16	Version:	1
Title:	CVE-2014-2338 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypass authentication by rekeying an IKE_SA during (1) initiation or (2) re-authentication, which triggers the IKE_SA state to be set to established.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2014-2338
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND The 'strongswan' package in xenial was vulnerable but has been fixed (note: '5.1.2-0ubuntu2').