Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2018-6459

The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in strongSwan 5.6.1 allows remote attackers to cause a denial of service via a crafted RSASSA-PSS signature that lacks a mask generation function parameter.

Related bugs and status

CVE-2018-6459 (Candidate) is related to these bugs:

Bug #1776857: update strongswan-ikev2 package for ubuntu xenial

Summary				In	Importance	Status
	1776857	update strongswan-ikev2 package for ubuntu xenial		strongswan (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://www.strongswan...
GENTOO: GLSA-201811-16
SUSE: openSUSE-SU-2020:0403