strongSwan 5.9.9 released, fixing CVE-2023-26463

5 Mar 2023


      Hello development folks,
just for everyone's information:
https://www.strongswan.org/blog/2023/03/02/strongswan-vulnerability-(cve-202...
https://www.strongswan.org/blog/2023/01/03/strongswan-5.9.9-released.html
To the best of my understanding, IPFire is affected by CVE-2023-26463
(since the respective strongSwan plugins are loaded), but not vulnerable,
since such authentication cannot be configured via the web interface.
However, any installations running customized IPsec connections might be
affected by this.
Any volounteers for updating strongSwan? Thank you in advance. :-)
All the best,
Peter Müller

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

strongSwan 5.9.9 released, fixing CVE-2023-26463