strongswan: Fix for authentication bypass and DoS vulnerability
strongswan was fixed to correct two issues:
- Fix for DoS vulnerability by a NULL-pointer dereference (CVE-2014-2891).
- Fix for a authentication bypass vulnerability in the IKEv2 code (CVE-2014-2338).
-
Submitted by
Stefan Lijewski (lijews)
Fixed bugs
bnc#870572
VUL-0: CVE-2014-2338: strongswan: authentication bypass in IKEv2
bnc#876449
VUL-0: CVE-2014-2891: strongswan DoS
