diff options
author | rob2g2 <rob2g2-freebsd@bitbert.com> | 2022-10-10 12:16:36 +0000 |
---|---|---|
committer | Fernando ApesteguĂa <fernape@FreeBSD.org> | 2022-10-10 12:21:57 +0000 |
commit | c1b081145ff7f719c3867702e9d83718b674505d (patch) | |
tree | 4352d5a5824d54ec904255b425c1c88f7bbbb6dc /security/vuxml/vuln-2022.xml | |
parent | fd549cdc2e29df02a4d16095754b243cbe09c31a (diff) | |
download | ports-c1b081145ff7f719c3867702e9d83718b674505d.tar.gz ports-c1b081145ff7f719c3867702e9d83718b674505d.zip |
security/strongswan: Document DOS vulnerability
ChangeLog:
https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html
PR: 266938
Reported by: rob2g2-freebsd@bitbert.com
Security: CVE-2022-40617
Diffstat (limited to 'security/vuxml/vuln-2022.xml')
-rw-r--r-- | security/vuxml/vuln-2022.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln-2022.xml b/security/vuxml/vuln-2022.xml index 831c3685b898..87c5b48d1f01 100644 --- a/security/vuxml/vuln-2022.xml +++ b/security/vuxml/vuln-2022.xml @@ -1,3 +1,31 @@ + <vuln vid="0ae56f3e-488c-11ed-bb31-b42e99a1b9c3"> + <topic>strongswan -- DOS attack vulnerability</topic> + <affects> + <package> + <name>strongswan</name> + <range><lt>5.9.8</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Lahav Schlesinger reported a bug related to online + certificate revocation checking that can lead to a + denial-of-service attack</p> + <blockquote cite="https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html"> + <p>.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2022-40617</cvename> + <url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-40617</url> + </references> + <dates> + <discovery>2022-10-03</discovery> + <entry>2022-10-10</entry> + </dates> + </vuln> + <vuln vid="e4133d8b-ab33-451a-bc68-3719de73d54a"> <topic>routinator -- potential DOS attack</topic> <affects> |