strongSwan Crafted X.509 Certificate Multiple Remote Denial Of Service Vulnerabilities

strongSwan Crafted X.509 Certificate Multiple Remote Denial Of Service Vulnerabilities

strongSwan is prone to multiple remote denial-of-service vulnerabilities.

Attackers can exploit these issues to crash the application, denying access to legitimate users.

Versions prior to strongSwan 2.8.10, 4.3.2, and 4.2.16 are vulnerable.

UPDATE (July 27, 2009): Additional corrective measures were added to address these issues in strongSwan 2.8.11. 4.2.17, and 4.3.3.