FreeBSD : strongSwan -- ECDSA signature verification issue (6ff570cb-b418-11e2-b279-20cf30e32f6d)
Medium Nessus Plugin ID 66312
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionstrongSwan security team reports :
If the openssl plugin is used for ECDSA signature verification an empty, zeroed or otherwise invalid signature is handled as a legitimate one. Both IKEv1 and IKEv2 are affected.
Affected are only installations that have enabled and loaded the OpenSSL crypto backend (--enable-openssl). Builds using the default crypto backends are not affected.
SolutionUpdate the affected package.