| Revision Date: | 2018-02-20 | Version: | 1 | | Title: | CVE-2018-6459 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in strongSwan 5.6.1 allows remote attackers to cause a denial of service via a crafted RSASSA-PSS signature that lacks a mask generation function parameter.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2018-6459
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT charon-cmd package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libcharon-extra-plugins package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libstrongswan package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libstrongswan-extra-plugins package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libstrongswan-standard-plugins package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-charon package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-ike package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-ikev1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-ikev2 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-libcharon package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-nm package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-af-alg package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-agent package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-attr-sql package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-certexpire package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-coupling package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-curl package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-dhcp package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-dnscert package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-dnskey package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-duplicheck package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-aka package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-aka-3gpp2 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-dynamic package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-gtc package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-md5 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-mschapv2 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-peap package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-radius package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-sim package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-sim-file package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-sim-pcsc package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-simaka-pseudonym package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-simaka-reauth package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-simaka-sql package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-tls package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-tnc package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-eap-ttls package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-error-notify package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-farp package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-fips-prf package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-gcrypt package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-gmp package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-ipseckey package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-kernel-libipsec package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-ldap package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-led package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-load-tester package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-lookip package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-mysql package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-ntru package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-openssl package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-pgp package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-pkcs11 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-pubkey package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-radattr package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-soup package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-sql package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-sqlite package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-sshkey package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-systime-fix package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-unbound package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-unity package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-whitelist package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-xauth-eap package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-xauth-generic package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-xauth-noauth package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-plugin-xauth-pam package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-starter package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-tnc-base package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-tnc-client package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-tnc-ifmap package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-tnc-pdp package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT strongswan-tnc-server package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
|
|