FreeBSD : strongswan -- multiple DoS vulnerabilities (efa663eb-8754-11e3-9a47-00163e1ed244)

Medium Nessus Plugin ID 72156


The remote FreeBSD host is missing a security-related update.


strongSwan Project reports :

A DoS vulnerability triggered by crafted IKEv1 fragmentation payloads was discovered in strongSwan's IKE daemon charon. All versions since 5.0.2 are affected.

A DoS vulnerability and potential authorization bypass triggered by a crafted ID_DER_ASN1_DN ID payload was discovered in strongSwan. All versions since 4.3.3 are affected.

A DoS vulnerability in strongSwan was discovered, which is triggered by XAuth usernames and EAP identities in versions 5.0.3 and 5.0.4.


Update the affected package.

See Also

Plugin Details

Severity: Medium

ID: 72156

File Name: freebsd_pkg_efa663eb875411e39a4700163e1ed244.nasl

Version: $Revision: 1.1 $

Type: local

Published: 2014/01/28

Modified: 2014/01/28

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:strongswan, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2014/01/27

Vulnerability Publication Date: 2013/11/01

Reference Information

CVE: CVE-2013-5018, CVE-2013-6075, CVE-2013-6076