ELA-1012-1 strongswan security update
Package : strongswan
Version : 5.2.1-6+deb8u11 (jessie)
Related CVEs :
It was discovered that there was a potential buffer overflow in strongswan, a
popular IPsec-based VPN (Virtual Private Network) server.
A vulnerability related to processing public Diffie-Hellman key exchange values
could have resulted in a buffer overflow and potentially remote code execution
as a consequence.
A strongswan security update has been released for Debian GNU/Linux 8 Extended LTS to address a potential buffer overflow.