CVE-2022-40617

Name
CVE-2022-40617
Description
strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
CONFIRM https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J3GAYIOCSLU57C45CO4UE4IV4JZE4W3L/
https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-%28cve-2022-40617%29.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J3GAYIOCSLU57C45CO4UE4IV4JZE4W3L/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:* strongswan >= None < 5.9.8

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
strongswan edge-main 5.9.8-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
strongswan edge-main 5.9.1-r4 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
strongswan edge-main 5.9.1-r3 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
strongswan edge-main 5.7.1-r0 None possibly vulnerable
strongswan edge-main 5.7.0-r0 None possibly vulnerable
strongswan edge-main 5.6.3-r0 None possibly vulnerable
strongswan edge-main 5.5.3-r0 None possibly vulnerable
strongswan 3.22-main 5.9.8-r0 None fixed
strongswan 3.22-main 5.9.1-r4 None possibly vulnerable
strongswan 3.22-main 5.9.1-r3 None possibly vulnerable
strongswan 3.22-main 5.7.1-r0 None possibly vulnerable
strongswan 3.22-main 5.7.0-r0 None possibly vulnerable
strongswan 3.22-main 5.6.3-r0 None possibly vulnerable
strongswan 3.22-main 5.5.3-r0 None possibly vulnerable
strongswan 3.21-main 5.9.8-r0 None fixed
strongswan 3.21-main 5.9.1-r4 None possibly vulnerable
strongswan 3.21-main 5.9.1-r3 None possibly vulnerable
strongswan 3.21-main 5.7.1-r0 None possibly vulnerable
strongswan 3.21-main 5.7.0-r0 None possibly vulnerable
strongswan 3.21-main 5.6.3-r0 None possibly vulnerable
strongswan 3.21-main 5.5.3-r0 None possibly vulnerable
strongswan 3.20-main 5.9.8-r0 None fixed
strongswan 3.20-main 5.9.1-r4 None possibly vulnerable
strongswan 3.20-main 5.9.1-r3 None possibly vulnerable
strongswan 3.20-main 5.7.1-r0 None possibly vulnerable
strongswan 3.20-main 5.7.0-r0 None possibly vulnerable
strongswan 3.20-main 5.6.3-r0 None possibly vulnerable
strongswan 3.20-main 5.5.3-r0 None possibly vulnerable
strongswan 3.19-main 5.9.8-r0 None fixed
strongswan 3.19-main 5.9.1-r4 None possibly vulnerable
strongswan 3.19-main 5.9.1-r3 None possibly vulnerable
strongswan 3.19-main 5.7.1-r0 None possibly vulnerable
strongswan 3.19-main 5.7.0-r0 None possibly vulnerable
strongswan 3.19-main 5.6.3-r0 None possibly vulnerable
strongswan 3.19-main 5.5.3-r0 None possibly vulnerable
strongswan 3.18-main 5.9.8-r0 None fixed
strongswan 3.17-main 5.9.8-r0 Natanael Copa <ncopa@alpinelinux.org> fixed