Debian Security Update DSA-6176-1 strongswan - security update

Thread starter LinuxBot
Start date Mar 23, 2026

LinuxBot

Member

Mar 23, 2026

#1

Kazuma Matsumoto discovered an integer overflow bug in the EAP-TTLS plugin of strongSwan, an IKE/IPsec suite.
The EAP-TTLS plugin doesn't check the length field in the header of attribute-value pairs (AVPs) tunneled in EAP-TTLS, which can cause an integer underflow that may lead to a crash. An unauthenticated attacker could exploit this for a DoS attack by sending a crafted message.
https://security-tracker.debian.org/tracker/DSA-6176-1

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8117-1: strongSwan vulnerability

Replies: 0

Views: 65

Mar 23, 2026

LinuxBot

Debian Security Update DSA-6041-1 strongswan - security update

Replies: 0

Views: 287

Oct 27, 2025

LinuxBot

Debian Security Update DSA-6227-1 strongswan - security update

Replies: 0

Views: 150

Apr 22, 2026

LinuxBot

Debian Security Update DSA-6262-1 lcms2 - security update

Replies: 0

Views: 58

May 11, 2026

LinuxBot

Debian Security Update DSA-6277-1 openjpeg2 - security update

Replies: 0

Views: 73

May 16, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 4,819 (members: 4, guests: 4,815)

Latest posts

J
Ubuntu 26.04 Dock crashes
- Latest: Jens55
- 38 minutes ago
Ubuntu forum
O
Linux on Macbook 12" early 2016
- Latest: onzem
- 52 minutes ago
General Linux Topics
Testing QV. "Quirky Void".
- Latest: Magrid0
- Today at 8:32 AM
General Linux Topics
TLAC : This Local Server based Anti-Cheat Program is Build By Me
- Latest: wizardfromoz
- Today at 7:57 AM
Linux Gaming
Say Hello to Goodbye Mails: Temporary Disposable Email Accounts for Creating Accounts
- Latest: f33dm3bits
- Today at 7:26 AM
Mail Server

Top