Wind River Support Network

HomeDefectsLIN6-7289

Fixed

LIN6-7289 : Security Advisory - strongswan - CVE-2014-2338

Created: Apr 29, 2014 Updated: Dec 3, 2018

Resolved Date: May 4, 2014

Found In Version: 6.0.0.7

Fix Version: 6.0.0.7

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypass authentication by rekeying an IKE_SA during (1) initiation or (2) re-authentication, which triggers the IKE_SA state to be set to established.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2338

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38