Debian 10225 Published by

A strongswan security update has been released for Debian GNU/Linux 8 Extended LTS to address a potential buffer overflow.



ELA-1012-1 strongswan security update

Package : strongswan
Version : 5.2.1-6+deb8u11 (jessie)

Related CVEs :
CVE-2023-41913

It was discovered that there was a potential buffer overflow in strongswan, a
popular IPsec-based VPN (Virtual Private Network) server.
A vulnerability related to processing public Diffie-Hellman key exchange values
could have resulted in a buffer overflow and potentially remote code execution
as a consequence.

ELA-1012-1 strongswan security update