Oval Definition:oval:org.opensuse.security:def:57262
Revision Date:2020-12-01Version:1
Title:Security update for strongswan
Description:



This strongswan update fixes security issues and bugs:

* CVE-2013-5018: Specially crafted XAuth usernames and EAP identities can cause a crash in strongswan. * CVE-2013-6075: A crafted ID packet can be used by remote attackers to crash the server or potentially gain authentication privileges under certain circumstances.

Also a bug with route recursion limits was fixed:

* Charon SEGFAULT when left=%any / recursion limit. (bnc#840826)

Security Issues:

* CVE-2013-5018

Family:unixClass:patch
Status:Reference(s):1005070
1005072
1005076
1008845
1012382
1024929
1026833
1027519
1031045
1031875
1031877
1031879
1031886
1032272
1032880
1040039
1042286
1047184
1062604
1064232
1065364
1076118
1082519
1082863
1083292
1084536
1085042
1088810
1089066
1089152
1089635
1090820
1090822
1090823
1091236
1092903
1094466
1095344
1096547
1097104
1097356
1099597
1099811
1099813
1099844
1099845
1099846
1099849
1099863
1099864
1099922
1099993
1099999
1100000
1100001
1100152
1102517
1102682
1102715
1102870
1103098
1103203
1103445
1104319
1104495
1104668
1105292
1105296
1105322
1105323
1105348
1105396
1105536
1106016
1106095
1106191
1106369
1106509
1106511
1106512
1106594
1107689
1107735
1107966
1108239
1108399
1109333
1118319
1124729
1124734
1128378
1128471
1128472
1128474
1128476
1128480
1128481
1128490
1128492
1128493
1140747
833278
840826
847506
947003
986566
989980
998677
CVE-2010-0405
CVE-2013-5018
CVE-2015-2304
CVE-2015-4500
CVE-2015-4501
CVE-2015-4506
CVE-2015-4509
CVE-2015-4511
CVE-2015-4517
CVE-2015-4519
CVE-2015-4520
CVE-2015-4521
CVE-2015-4522
CVE-2015-7174
CVE-2015-7175
CVE-2015-7176
CVE-2015-7177
CVE-2015-7180
CVE-2015-8025
CVE-2016-5418
CVE-2016-5844
CVE-2016-6250
CVE-2016-8687
CVE-2016-8688
CVE-2016-8689
CVE-2016-9189
CVE-2017-3145
CVE-2017-7392
CVE-2017-7393
CVE-2017-7394
CVE-2017-7395
CVE-2017-7396
CVE-2018-10471
CVE-2018-10472
CVE-2018-10853
CVE-2018-10876
CVE-2018-10877
CVE-2018-10878
CVE-2018-10879
CVE-2018-10880
CVE-2018-10881
CVE-2018-10882
CVE-2018-10883
CVE-2018-10902
CVE-2018-10938
CVE-2018-10940
CVE-2018-12539
CVE-2018-12896
CVE-2018-13093
CVE-2018-13094
CVE-2018-13095
CVE-2018-14617
CVE-2018-14678
CVE-2018-1517
CVE-2018-15572
CVE-2018-15594
CVE-2018-16276
CVE-2018-1656
CVE-2018-16658
CVE-2018-17182
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-5390
CVE-2018-5391
CVE-2018-5848
CVE-2018-6554
CVE-2018-6555
CVE-2018-7480
CVE-2018-7550
CVE-2018-7757
CVE-2018-8897
CVE-2018-9363
CVE-2018-9568
CVE-2019-11478
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
SUSE-SU-2016:2911-1
SUSE-SU-2017:1094-1
SUSE-SU-2018:0303-1
SUSE-SU-2018:1202-1
SUSE-SU-2018:2649-1
SUSE-SU-2018:3084-1
SUSE-SU-2018:4153-1
SUSE-SU-2019:0655-1
SUSE-SU-2019:1772-1
SUSE-SU-2019:1935-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gcab-1.1-lp150.1 is installed
  • OR gcab-lang-1.1-lp150.1 is installed
  • OR libgcab-1_0-0-1.1-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp151.6.3 is installed
  • OR php7-7.2.5-lp151.6.3 is installed
  • OR php7-bcmath-7.2.5-lp151.6.3 is installed
  • OR php7-bz2-7.2.5-lp151.6.3 is installed
  • OR php7-calendar-7.2.5-lp151.6.3 is installed
  • OR php7-ctype-7.2.5-lp151.6.3 is installed
  • OR php7-curl-7.2.5-lp151.6.3 is installed
  • OR php7-dba-7.2.5-lp151.6.3 is installed
  • OR php7-devel-7.2.5-lp151.6.3 is installed
  • OR php7-dom-7.2.5-lp151.6.3 is installed
  • OR php7-embed-7.2.5-lp151.6.3 is installed
  • OR php7-enchant-7.2.5-lp151.6.3 is installed
  • OR php7-exif-7.2.5-lp151.6.3 is installed
  • OR php7-fastcgi-7.2.5-lp151.6.3 is installed
  • OR php7-fileinfo-7.2.5-lp151.6.3 is installed
  • OR php7-firebird-7.2.5-lp151.6.3 is installed
  • OR php7-fpm-7.2.5-lp151.6.3 is installed
  • OR php7-ftp-7.2.5-lp151.6.3 is installed
  • OR php7-gd-7.2.5-lp151.6.3 is installed
  • OR php7-gettext-7.2.5-lp151.6.3 is installed
  • OR php7-gmp-7.2.5-lp151.6.3 is installed
  • OR php7-iconv-7.2.5-lp151.6.3 is installed
  • OR php7-intl-7.2.5-lp151.6.3 is installed
  • OR php7-json-7.2.5-lp151.6.3 is installed
  • OR php7-ldap-7.2.5-lp151.6.3 is installed
  • OR php7-mbstring-7.2.5-lp151.6.3 is installed
  • OR php7-mysql-7.2.5-lp151.6.3 is installed
  • OR php7-odbc-7.2.5-lp151.6.3 is installed
  • OR php7-opcache-7.2.5-lp151.6.3 is installed
  • OR php7-openssl-7.2.5-lp151.6.3 is installed
  • OR php7-pcntl-7.2.5-lp151.6.3 is installed
  • OR php7-pdo-7.2.5-lp151.6.3 is installed
  • OR php7-pear-7.2.5-lp151.6.3 is installed
  • OR php7-pear-Archive_Tar-7.2.5-lp151.6.3 is installed
  • OR php7-pgsql-7.2.5-lp151.6.3 is installed
  • OR php7-phar-7.2.5-lp151.6.3 is installed
  • OR php7-posix-7.2.5-lp151.6.3 is installed
  • OR php7-readline-7.2.5-lp151.6.3 is installed
  • OR php7-shmop-7.2.5-lp151.6.3 is installed
  • OR php7-snmp-7.2.5-lp151.6.3 is installed
  • OR php7-soap-7.2.5-lp151.6.3 is installed
  • OR php7-sockets-7.2.5-lp151.6.3 is installed
  • OR php7-sodium-7.2.5-lp151.6.3 is installed
  • OR php7-sqlite-7.2.5-lp151.6.3 is installed
  • OR php7-sysvmsg-7.2.5-lp151.6.3 is installed
  • OR php7-sysvsem-7.2.5-lp151.6.3 is installed
  • OR php7-sysvshm-7.2.5-lp151.6.3 is installed
  • OR php7-testresults-7.2.5-lp151.6.3 is installed
  • OR php7-tidy-7.2.5-lp151.6.3 is installed
  • OR php7-tokenizer-7.2.5-lp151.6.3 is installed
  • OR php7-wddx-7.2.5-lp151.6.3 is installed
  • OR php7-xmlreader-7.2.5-lp151.6.3 is installed
  • OR php7-xmlrpc-7.2.5-lp151.6.3 is installed
  • OR php7-xmlwriter-7.2.5-lp151.6.3 is installed
  • OR php7-xsl-7.2.5-lp151.6.3 is installed
  • OR php7-zip-7.2.5-lp151.6.3 is installed
  • OR php7-zlib-7.2.5-lp151.6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • strongswan-4.4.0-6.21 is installed
  • OR strongswan-doc-4.4.0-6.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • mozilla-nspr-4.10.9-11 is installed
  • OR mozilla-nspr-32bit-4.10.9-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ntp-4.2.8p11-64.5 is installed
  • OR ntp-doc-4.2.8p11-64.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_61-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc-binding0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-doc-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libxml2-2.9.4-46.23 is installed
  • OR libxml2-2-2.9.4-46.23 is installed
  • OR libxml2-2-32bit-2.9.4-46.23 is installed
  • OR libxml2-doc-2.9.4-46.23 is installed
  • OR libxml2-tools-2.9.4-46.23 is installed
  • OR python-libxml2-2.9.4-46.23 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-Pillow-2.8.1-4.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libmariadb3-3.0.3-3.3 is installed
  • OR mariadb-10.2.15-4.3 is installed
  • OR mariadb-client-10.2.15-4.3 is installed
  • OR mariadb-connector-c-3.0.3-3.3 is installed
  • OR mariadb-errormessages-10.2.15-4.3 is installed
  • OR mariadb-galera-10.2.15-4.3 is installed
  • OR mariadb-tools-10.2.15-4.3 is installed
  • OR xtrabackup-2.4.10-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • BACK