Re: git: 4e2c0382dd6c - main - security/strongswan: fix CVE-2023-41913

24.11.2023 19:02, Florian Smeets wrote:

> Hi Eugene,
> 
> did you verify whether the port is actually vulnerable?

I have to admit, I did not. I run strongswan in production
and mere "possibility of remote code execution" with ease patching
made me apply the patch ASAP.

> I had a look a couple of days ago and my impression was that we don't build charon with the TKM backend.
> I only had a quick look, so maybe I was wrong and your input would be much appreciated.

You are right. Also, building --with-tkm requires installing devel/gprbuild first.