[Bug 228631] security/strongswan: Update to 5.6.3 (Fixes DOS Security Vulnerabilities)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sun Jun 3 12:08:46 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=228631
--- Comment #4 from commit-hook at freebsd.org ---
A commit references this bug:
Author: krion
Date: Sun Jun 3 12:07:42 UTC 2018
New revision: 471490
URL: https://svnweb.freebsd.org/changeset/ports/471490
Log:
MFH: r471205
Update to 5.6.3
Fixes:
- Denial-of-Service Vulnerability in the IKEv2 key derivation
(CVE-2018-10811)
- Denial-of-Service Vulnerability in the stroke plugin
(CVE-2018-5388)
- Crash on FreeBSD that was present in 5.6.2
- The kernel-pfkey plugin optionally installs routes via internal
interface (one with an IP in the local traffic selector). On
FreeBSD, enabling this selects the correct source IP when sending
packets from the gateway itself.
PR: 228631
Submitted by: maintainer
Approved by: ports-secteam
Changes:
_U branches/2018Q2/
branches/2018Q2/security/strongswan/Makefile
branches/2018Q2/security/strongswan/distinfo
branches/2018Q2/security/strongswan/files/patch-src_libcharon_sa_ikev2_authenticators_pubkey_authenticator.c
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list