Overview

File _patchinfo of Package patchinfo.282

<patchinfo incident="strongswan">
  <packager>lijews</packager>
  <issue tracker="cve" id="CVE-2014-2338"></issue>
  <issue tracker="cve" id="CVE-2014-2891"></issue>
  <issue tracker="bnc" id="870572">VUL-0: CVE-2014-2338: strongswan: authentication bypass in IKEv2</issue>
  <issue tracker="bnc" id="876449">VUL-0: CVE-2014-2891: strongswan DoS</issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>strongswan: Fix for authentication bypass and DoS vulnerability</summary>
  <description>strongswan was fixed to correct two issues:
- Fix for DoS vulnerability by a NULL-pointer dereference (CVE-2014-2891).
- Fix for a authentication bypass vulnerability in the IKEv2 code (CVE-2014-2338).</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places