Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 879664 Details for
Bug 1081760
CVE-2014-2338 strongswan: authentication bypass flaw in IKEv2
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
[patch]
upstream patch for 5.x
CVE-2014-2338-5.x.patch (text/plain), 1.38 KB, created by
Vincent Danen
on 2014-03-27 22:18:38 UTC
(
hide
)
Description:
upstream patch for 5.x
Filename:
MIME Type:
Creator:
Vincent Danen
Created:
2014-03-27 22:18:38 UTC
Size:
1.38 KB
patch
obsolete
>From b980ba7757dcfedd756aa055b3271ea58cf85aa6 Mon Sep 17 00:00:00 2001 >From: Martin Willi <martin@revosec.ch> >Date: Thu, 20 Feb 2014 16:08:43 +0100 >Subject: [PATCH] ikev2: Reject CREATE_CHILD_SA exchange on unestablished > IKE_SAs > >Prevents a responder peer to trick us into established state by starting >IKE_SA rekeying before the IKE_SA has been authenticated during IKE_AUTH. > >Fixes CVE-2014-2338 for 5.x versions of strongSwan. >--- > src/libcharon/sa/ikev2/task_manager_v2.c | 9 +++++++++ > 1 file changed, 9 insertions(+) > >diff --git a/src/libcharon/sa/ikev2/task_manager_v2.c b/src/libcharon/sa/ikev2/task_manager_v2.c >index ac3be90..a5252ab 100644 >--- a/src/libcharon/sa/ikev2/task_manager_v2.c >+++ b/src/libcharon/sa/ikev2/task_manager_v2.c >@@ -778,6 +778,15 @@ static status_t process_request(private_task_manager_t *this, > case CREATE_CHILD_SA: > { /* FIXME: we should prevent this on mediation connections */ > bool notify_found = FALSE, ts_found = FALSE; >+ >+ if (this->ike_sa->get_state(this->ike_sa) == IKE_CREATED || >+ this->ike_sa->get_state(this->ike_sa) == IKE_CONNECTING) >+ { >+ DBG1(DBG_IKE, "received CREATE_CHILD_SA request for " >+ "unestablished IKE_SA, rejected"); >+ return FAILED; >+ } >+ > enumerator = message->create_payload_enumerator(message); > while (enumerator->enumerate(enumerator, &payload)) > { >-- >1.8.1.2
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=879664">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1081760
: 879664