File _patchinfo of Package patchinfo.3831

<patchinfo incident="3831">
  <issue id="933591" tracker="bnc">VUL-0: CVE-2015-4171: strongswan: rogue servers vulnerability</issue>
  <issue id="CVE-2015-4171" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>mtomaschewski</packager>
  <description>strongswan was updated to fix a rogue servers vulnerability, that may
enable rogue servers able to authenticate itself with certificate
issued by any CA the client trusts, to gain user credentials from
a client in certain IKEv2 setups (bsc#933591,CVE-2015-4171).

More information can be found on https://www.strongswan.org/blog/2015/06/08/strongswan-vulnerability-%28cve-2015-4171%29.html
</description>
  <summary>Security update for strongswan</summary>
</patchinfo>
openSUSE Build Service is sponsored by