[Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-10155/*swan
Salvatore Bonaccorso
carnil at debian.org
Thu Jun 13 15:58:12 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0705f942 by Salvatore Bonaccorso at 2019-06-13T14:56:44Z
Update information for CVE-2019-10155/*swan
For strongswan, upstream ditched the IKEv1 daemon pluto and recoded
IKEv1 protocol in charon, which was not anymore affected by the issue.
The first post 5.0 version in unstable was 5.1.0-1 followed by 5.0.4
based uploads to experimental.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6492,7 +6492,11 @@ CVE-2019-10156 [templating causing an unexpected key file to be set on remote no
TODO: check details
CVE-2019-10155 (The Libreswan Project has found a vulnerability in the processing of I ...)
- libreswan 3.27-6 (bug #930338)
+ - strongswan 5.1.0-1
+ - openswan <removed>
+ - freeswan <removed>
NOTE: https://libreswan.org/security/CVE-2019-10155/
+ NOTE: Not vulnerable: libreswan 3.29 and later, strongswan 5.0 and later, freeswan
CVE-2019-10154
RESERVED
- moodle <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0705f942bbc8e123b49db9c76a9f705e39d7b7f1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0705f942bbc8e123b49db9c76a9f705e39d7b7f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190613/cbb86d03/attachment.html>
More information about the debian-security-tracker-commits
mailing list