Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : strongswan vulnerabilities (USN-3771-1)

Medium Nessus Plugin ID 117805

Synopsis

The remote Ubuntu host is missing one or more security-related
patches.

Description

It was discovered that strongSwan incorrectly handled IKEv2 key
derivation. A remote attacker could possibly use this issue to cause
strongSwan to crash, resulting in a denial of service.
(CVE-2018-10811)

Sze Yiu Chau discovered that strongSwan incorrectly handled parsing
OIDs in the gmp plugin. A remote attacker could possibly use this
issue to bypass authorization. (CVE-2018-16151)

Sze Yiu Chau discovered that strongSwan incorrectly handled certain
parameters fields in the gmp plugin. A remote attacker could possibly
use this issue to bypass authorization. (CVE-2018-16152)

It was discovered that strongSwan incorrectly handled the stroke
plugin. A local administrator could use this issue to cause a denial
of service, or possibly execute arbitrary code. (CVE-2018-5388).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

Solution

Update the affected libstrongswan and / or strongswan packages.

See Also

https://usn.ubuntu.com/3771-1/

Plugin Details

Severity: Medium

ID: 117805

File Name: ubuntu_USN-3771-1.nasl

Version: 1.2

Type: local

Agent: unix

Published: 2018/09/27

Modified: 2018/12/01

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnerability Information

CPE: p-cpe:/a:canonical:ubuntu_linux:libstrongswan, p-cpe:/a:canonical:ubuntu_linux:strongswan, cpe:/o:canonical:ubuntu_linux:14.04, cpe:/o:canonical:ubuntu_linux:16.04, cpe:/o:canonical:ubuntu_linux:18.04:-:lts

Patch Publication Date: 2018/09/25

Reference Information

CVE: CVE-2018-10811, CVE-2018-16151, CVE-2018-16152, CVE-2018-5388

USN: 3771-1