Bug 1457121 (CVE-2017-9022) - CVE-2017-9022 strongswan: Insufficient validation of RSA public keys passed to the gmp plugin
Summary: CVE-2017-9022 strongswan: Insufficient validation of RSA public keys passed t...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2017-9022
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1457123 1457124
Blocks: 1457125
TreeView+ depends on / blocked
 
Reported: 2017-05-31 07:43 UTC by Andrej Nemec
Modified: 2021-02-17 02:05 UTC (History)
3 users (show)

Fixed In Version: strongswan 5.5.3
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2017-07-05 14:48:23 UTC
Embargoed:


Attachments (Terms of Use)

Description Andrej Nemec 2017-05-31 07:43:14 UTC
It was found that RSA public keys passed to the gmp plugin aren't validated sufficiently before attempting signature verification, so that invalid input might lead to a floating point exception and crash of the process. A certificate with an appropriately prepared public key sent by a peer could be used for a denial-of-service attack.

External References:

https://www.strongswan.org/blog/2017/05/30/strongswan-vulnerability-(cve-2017-9022).html

Comment 1 Andrej Nemec 2017-05-31 07:45:27 UTC
Created strongswan tracking bugs for this issue:

Affects: epel-all [bug 1457123]
Affects: fedora-all [bug 1457124]

Comment 2 Stefan Cornelius 2017-07-05 14:48:32 UTC
Statement:

This issue did not affect the versions of strongimcv as shipped with Red Hat Enterprise Linux 7, as they did not include support for the gmp plugin.


Note You need to log in before you can comment on or make changes to this bug.