File 0001-FIX-CVE-2026-25075-strongswan-Integer-Underflow-When.patch of Package strongswan.43150
From dea013d0a7e0000b27af12eca285fe60ec4e925e Mon Sep 17 00:00:00 2001 From: Rahul Jain <rahul.jain@suse.com> Date: Wed, 11 Mar 2026 23:38:51 +0530 Subject: [PATCH] FIX:CVE-2026-25075: strongswan: Integer Underflow When Handling EAP-TTLS AVP --- src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c b/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c index 4f83dad..ce470cf 100644 --- a/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c +++ b/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c @@ -624,7 +624,7 @@ METHOD(authenticator_t, process, status_t, DBG1(DBG_IKE, "%N authentication %s", auth_method_names, auth_method, reason); signature_params_destroy(params); - return INVALID_ARG; + return FAILED; } id = this->ike_sa->get_other_id(this->ike_sa); if (!get_auth_octets_scheme(this, TRUE, id, this->ppk, &octets, ¶ms)) -- 2.50.0
