Oval Definition:	oval:com.ubuntu.xenial:def:20179022000
Revision Date: 2017-06-08 Version: 1 Title: CVE-2017-9022 on Ubuntu 16.04 LTS (xenial) - medium. Description: The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-9022 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'strongswan' package in xenial was vulnerable but has been fixed (note: '5.3.5-1ubuntu3.3').
BACK