Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-16151 (GCVE-0-2018-16151)
Vulnerability from cvelistv5
Published
2018-09-26 21:00
Modified
2024-08-05 10:17
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T10:17:37.623Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-4305",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"name": "GLSA-201811-16",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html"
},
{
"name": "[debian-lts-announce] 20180926 [SECURITY] [DLA 1522-1] strongswan security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"name": "USN-3771-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"name": "openSUSE-SU-2019:2594",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"name": "openSUSE-SU-2019:2598",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"name": "openSUSE-SU-2020:0403",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-09-24T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-03-30T00:06:04",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "DSA-4305",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"name": "GLSA-201811-16",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html"
},
{
"name": "[debian-lts-announce] 20180926 [SECURITY] [DLA 1522-1] strongswan security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"name": "USN-3771-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"name": "openSUSE-SU-2019:2594",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"name": "openSUSE-SU-2019:2598",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"name": "openSUSE-SU-2020:0403",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-16151",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4305",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"name": "GLSA-201811-16",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"name": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html",
"refsource": "CONFIRM",
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html"
},
{
"name": "[debian-lts-announce] 20180926 [SECURITY] [DLA 1522-1] strongswan security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"name": "USN-3771-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"name": "openSUSE-SU-2019:2594",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"name": "openSUSE-SU-2019:2598",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"name": "openSUSE-SU-2020:0403",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-16151",
"datePublished": "2018-09-26T21:00:00",
"dateReserved": "2018-08-29T00:00:00",
"dateUpdated": "2024-08-05T10:17:37.623Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2018-16151\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-09-26T21:29:01.087\",\"lastModified\":\"2024-11-21T03:52:10.623\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.\"},{\"lang\":\"es\",\"value\":\"En verify_emsa_pkcs1_signature() en gmp_rsa_public_key.c en el plugin gmp en strongSwan en versiones 4.x y 5.x anteriores a la 5.7.0, la implementaci\u00f3n RSA basada en GMP no rechaza los datos sobrantes tras el algoritmo OID cifrado durante la verificaci\u00f3n de firmas PKCS#1 v1.5. De forma similar al error en la misma versi\u00f3n de strongSwan relacionado con digestAlgorithm.parameters, un atacante remoto puede falsificar firmas cuando se emplean peque\u00f1os exponentes p\u00fablicos, lo que podr\u00eda conducir a una suplantaci\u00f3n cuando solo se emplea una firma RSA para la autenticaci\u00f3n IKEv2.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-347\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndIncluding\":\"4.6.4\",\"matchCriteriaId\":\"B6D6BC52-A09F-4CB8-BB81-AC1FFCCE5612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.7.0\",\"matchCriteriaId\":\"43E0C1EC-FC33-4A36-8572-8E052C4DB9B7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201811-16\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3771-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4305\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201811-16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3771-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4305\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
ghsa-6w9w-qmvw-3v7q
Vulnerability from github
Published
2022-05-13 01:30
Modified
2022-05-13 01:30
Severity ?
VLAI Severity ?
Details
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.
{
"affected": [],
"aliases": [
"CVE-2018-16151"
],
"database_specific": {
"cwe_ids": [
"CWE-347"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-09-26T21:29:00Z",
"severity": "HIGH"
},
"details": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"id": "GHSA-6w9w-qmvw-3v7q",
"modified": "2022-05-13T01:30:25Z",
"published": "2022-05-13T01:30:25Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16151"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3771-1"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"type": "WEB",
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
}
]
}
fkie_cve-2018-16151
Vulnerability from fkie_nvd
Published
2018-09-26 21:29
Modified
2024-11-21 03:52
Severity ?
Summary
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html | ||
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html | ||
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html | ||
| cve@mitre.org | https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html | Mailing List, Third Party Advisory | |
| cve@mitre.org | https://security.gentoo.org/glsa/201811-16 | Third Party Advisory | |
| cve@mitre.org | https://usn.ubuntu.com/3771-1/ | Third Party Advisory | |
| cve@mitre.org | https://www.debian.org/security/2018/dsa-4305 | Third Party Advisory | |
| cve@mitre.org | https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/201811-16 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3771-1/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2018/dsa-4305 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| strongswan | strongswan | * | |
| strongswan | strongswan | * | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B6D6BC52-A09F-4CB8-BB81-AC1FFCCE5612",
"versionEndIncluding": "4.6.4",
"versionStartIncluding": "4.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*",
"matchCriteriaId": "43E0C1EC-FC33-4A36-8572-8E052C4DB9B7",
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication."
},
{
"lang": "es",
"value": "En verify_emsa_pkcs1_signature() en gmp_rsa_public_key.c en el plugin gmp en strongSwan en versiones 4.x y 5.x anteriores a la 5.7.0, la implementaci\u00f3n RSA basada en GMP no rechaza los datos sobrantes tras el algoritmo OID cifrado durante la verificaci\u00f3n de firmas PKCS#1 v1.5. De forma similar al error en la misma versi\u00f3n de strongSwan relacionado con digestAlgorithm.parameters, un atacante remoto puede falsificar firmas cuando se emplean peque\u00f1os exponentes p\u00fablicos, lo que podr\u00eda conducir a una suplantaci\u00f3n cuando solo se emplea una firma RSA para la autenticaci\u00f3n IKEv2."
}
],
"id": "CVE-2018-16151",
"lastModified": "2024-11-21T03:52:10.623",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-09-26T21:29:01.087",
"references": [
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"source": "cve@mitre.org",
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-%28cve-2018-16151%2C-cve-2018-16152%29.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2018-16151
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-16151",
"description": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"id": "GSD-2018-16151",
"references": [
"https://www.suse.com/security/cve/CVE-2018-16151.html",
"https://www.debian.org/security/2018/dsa-4305",
"https://ubuntu.com/security/CVE-2018-16151",
"https://security.archlinux.org/CVE-2018-16151"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-16151"
],
"details": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"id": "GSD-2018-16151",
"modified": "2023-12-13T01:22:25.915220Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-16151",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4305",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"name": "GLSA-201811-16",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"name": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html",
"refsource": "CONFIRM",
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html"
},
{
"name": "[debian-lts-announce] 20180926 [SECURITY] [DLA 1522-1] strongswan security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"name": "USN-3771-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"name": "openSUSE-SU-2019:2594",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"name": "openSUSE-SU-2019:2598",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"name": "openSUSE-SU-2020:0403",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.6.4",
"versionStartIncluding": "4.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-16151"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html",
"refsource": "CONFIRM",
"tags": [
"Mitigation",
"Patch",
"Technical Description",
"Vendor Advisory"
],
"url": "https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html"
},
{
"name": "DSA-4305",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4305"
},
{
"name": "USN-3771-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3771-1/"
},
{
"name": "[debian-lts-announce] 20180926 [SECURITY] [DLA 1522-1] strongswan security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00032.html"
},
{
"name": "GLSA-201811-16",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201811-16"
},
{
"name": "openSUSE-SU-2019:2594",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"
},
{
"name": "openSUSE-SU-2019:2598",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"
},
{
"name": "openSUSE-SU-2020:0403",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2019-12-01T01:15Z",
"publishedDate": "2018-09-26T21:29Z"
}
}
}
suse-su-2022:14887-1
Vulnerability from csaf_suse
Published
2022-02-18 09:39
Modified
2022-02-18 09:39
Summary
Security update for strongswan
Notes
Title of the patch
Security update for strongswan
Description of the patch
This update for strongswan fixes the following issues:
- CVE-2018-16151: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874)
- CVE-2018-16152: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874)
- CVE-2018-17540: Fixed insufficient input validation in gmp plugin. (bsc#1109845)
- CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471)
Patchnames
sleposp3-strongswan-14887,slessp4-strongswan-14887
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for strongswan",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for strongswan fixes the following issues:\n\t \n- CVE-2018-16151: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874)\n- CVE-2018-16152: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874)\n- CVE-2018-17540: Fixed insufficient input validation in gmp plugin. (bsc#1109845)\n- CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sleposp3-strongswan-14887,slessp4-strongswan-14887",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_14887-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:14887-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-202214887-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:14887-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-February/010262.html"
},
{
"category": "self",
"summary": "SUSE Bug 1107874",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "self",
"summary": "SUSE Bug 1109845",
"url": "https://bugzilla.suse.com/1109845"
},
{
"category": "self",
"summary": "SUSE Bug 1194471",
"url": "https://bugzilla.suse.com/1194471"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16151 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16152 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17540 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-45079 page",
"url": "https://www.suse.com/security/cve/CVE-2021-45079/"
}
],
"title": "Security update for strongswan",
"tracking": {
"current_release_date": "2022-02-18T09:39:04Z",
"generator": {
"date": "2022-02-18T09:39:04Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:14887-1",
"initial_release_date": "2022-02-18T09:39:04Z",
"revision_history": [
{
"date": "2022-02-18T09:39:04Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "strongswan-4.4.0-6.36.12.1.i586",
"product": {
"name": "strongswan-4.4.0-6.36.12.1.i586",
"product_id": "strongswan-4.4.0-6.36.12.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-doc-4.4.0-6.36.12.1.i586",
"product": {
"name": "strongswan-doc-4.4.0-6.36.12.1.i586",
"product_id": "strongswan-doc-4.4.0-6.36.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-4.4.0-6.36.12.1.ppc64",
"product": {
"name": "strongswan-4.4.0-6.36.12.1.ppc64",
"product_id": "strongswan-4.4.0-6.36.12.1.ppc64"
}
},
{
"category": "product_version",
"name": "strongswan-doc-4.4.0-6.36.12.1.ppc64",
"product": {
"name": "strongswan-doc-4.4.0-6.36.12.1.ppc64",
"product_id": "strongswan-doc-4.4.0-6.36.12.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-4.4.0-6.36.12.1.s390x",
"product": {
"name": "strongswan-4.4.0-6.36.12.1.s390x",
"product_id": "strongswan-4.4.0-6.36.12.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-doc-4.4.0-6.36.12.1.s390x",
"product": {
"name": "strongswan-doc-4.4.0-6.36.12.1.s390x",
"product_id": "strongswan-doc-4.4.0-6.36.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-4.4.0-6.36.12.1.x86_64",
"product": {
"name": "strongswan-4.4.0-6.36.12.1.x86_64",
"product_id": "strongswan-4.4.0-6.36.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-doc-4.4.0-6.36.12.1.x86_64",
"product": {
"name": "strongswan-doc-4.4.0-6.36.12.1.x86_64",
"product_id": "strongswan-doc-4.4.0-6.36.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-pos:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-4.4.0-6.36.12.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586"
},
"product_reference": "strongswan-4.4.0-6.36.12.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-4.4.0-6.36.12.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586"
},
"product_reference": "strongswan-doc-4.4.0-6.36.12.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-4.4.0-6.36.12.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586"
},
"product_reference": "strongswan-4.4.0-6.36.12.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-4.4.0-6.36.12.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64"
},
"product_reference": "strongswan-4.4.0-6.36.12.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-4.4.0-6.36.12.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x"
},
"product_reference": "strongswan-4.4.0-6.36.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-4.4.0-6.36.12.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64"
},
"product_reference": "strongswan-4.4.0-6.36.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-4.4.0-6.36.12.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586"
},
"product_reference": "strongswan-doc-4.4.0-6.36.12.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-4.4.0-6.36.12.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64"
},
"product_reference": "strongswan-doc-4.4.0-6.36.12.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-4.4.0-6.36.12.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x"
},
"product_reference": "strongswan-doc-4.4.0-6.36.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-4.4.0-6.36.12.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
},
"product_reference": "strongswan-doc-4.4.0-6.36.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16151"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16151",
"url": "https://www.suse.com/security/cve/CVE-2018-16151"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-18T09:39:04Z",
"details": "moderate"
}
],
"title": "CVE-2018-16151"
},
{
"cve": "CVE-2018-16152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16152"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16152",
"url": "https://www.suse.com/security/cve/CVE-2018-16152"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16152",
"url": "https://bugzilla.suse.com/1107874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-18T09:39:04Z",
"details": "moderate"
}
],
"title": "CVE-2018-16152"
},
{
"cve": "CVE-2018-17540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17540"
}
],
"notes": [
{
"category": "general",
"text": "The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17540",
"url": "https://www.suse.com/security/cve/CVE-2018-17540"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-18T09:39:04Z",
"details": "moderate"
}
],
"title": "CVE-2018-17540"
},
{
"cve": "CVE-2021-45079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-45079"
}
],
"notes": [
{
"category": "general",
"text": "In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-45079",
"url": "https://www.suse.com/security/cve/CVE-2021-45079"
},
{
"category": "external",
"summary": "SUSE Bug 1194471 for CVE-2021-45079",
"url": "https://bugzilla.suse.com/1194471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-4.4.0-6.36.12.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:strongswan-doc-4.4.0-6.36.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-18T09:39:04Z",
"details": "moderate"
}
],
"title": "CVE-2021-45079"
}
]
}
suse-su-2019:3266-1
Vulnerability from csaf_suse
Published
2019-12-11 10:19
Modified
2019-12-11 10:19
Summary
Security update for strongswan
Notes
Title of the patch
Security update for strongswan
Description of the patch
This update for strongswan provides the following fixes:
Security issues fixed:
- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker
with local user credentials to resource exhaustion and denial of service while
reading from the socket (bsc#1094462).
- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if
the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF
(bsc#1093536).
- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which
might lead to authorization bypass (bsc#1107874).
- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845).
Other issues addressed:
- Fixed some client fails when the scep server URL is used with HTTPS protocol (bsc#1071853).
- Reject Diffie-Hellman key exchanges using primes smaller than 1024 bit.
- Handle unexpected informational message from SonicWall. (bsc#1009254)
Patchnames
SUSE-2019-3266,SUSE-OpenStack-Cloud-7-2019-3266,SUSE-OpenStack-Cloud-8-2019-3266,SUSE-SLE-DESKTOP-12-SP4-2019-3266,SUSE-SLE-SAP-12-SP1-2019-3266,SUSE-SLE-SAP-12-SP2-2019-3266,SUSE-SLE-SAP-12-SP3-2019-3266,SUSE-SLE-SERVER-12-SP1-2019-3266,SUSE-SLE-SERVER-12-SP2-2019-3266,SUSE-SLE-SERVER-12-SP2-BCL-2019-3266,SUSE-SLE-SERVER-12-SP3-2019-3266,SUSE-SLE-SERVER-12-SP3-BCL-2019-3266,SUSE-SLE-SERVER-12-SP4-2019-3266,SUSE-SLE-SERVER-12-SP5-2019-3266,SUSE-Storage-5-2019-3266
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for strongswan",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for strongswan provides the following fixes:\n\t \nSecurity issues fixed: \n\n- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker \n with local user credentials to resource exhaustion and denial of service while \n reading from the socket (bsc#1094462).\n- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if \n the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF \n (bsc#1093536).\n- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which \n might lead to authorization bypass (bsc#1107874).\n- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845). \n\nOther issues addressed:\n\n- Fixed some client fails when the scep server URL is used with HTTPS protocol (bsc#1071853).\n- Reject Diffie-Hellman key exchanges using primes smaller than 1024 bit.\n- Handle unexpected informational message from SonicWall. (bsc#1009254)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-3266,SUSE-OpenStack-Cloud-7-2019-3266,SUSE-OpenStack-Cloud-8-2019-3266,SUSE-SLE-DESKTOP-12-SP4-2019-3266,SUSE-SLE-SAP-12-SP1-2019-3266,SUSE-SLE-SAP-12-SP2-2019-3266,SUSE-SLE-SAP-12-SP3-2019-3266,SUSE-SLE-SERVER-12-SP1-2019-3266,SUSE-SLE-SERVER-12-SP2-2019-3266,SUSE-SLE-SERVER-12-SP2-BCL-2019-3266,SUSE-SLE-SERVER-12-SP3-2019-3266,SUSE-SLE-SERVER-12-SP3-BCL-2019-3266,SUSE-SLE-SERVER-12-SP4-2019-3266,SUSE-SLE-SERVER-12-SP5-2019-3266,SUSE-Storage-5-2019-3266",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_3266-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:3266-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20193266-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:3266-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-December/006239.html"
},
{
"category": "self",
"summary": "SUSE Bug 1009254",
"url": "https://bugzilla.suse.com/1009254"
},
{
"category": "self",
"summary": "SUSE Bug 1071853",
"url": "https://bugzilla.suse.com/1071853"
},
{
"category": "self",
"summary": "SUSE Bug 1093536",
"url": "https://bugzilla.suse.com/1093536"
},
{
"category": "self",
"summary": "SUSE Bug 1094462",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "self",
"summary": "SUSE Bug 1107874",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "self",
"summary": "SUSE Bug 1109845",
"url": "https://bugzilla.suse.com/1109845"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10811 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16151 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16152 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17540 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5388 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5388/"
}
],
"title": "Security update for strongswan",
"tracking": {
"current_release_date": "2019-12-11T10:19:12Z",
"generator": {
"date": "2019-12-11T10:19:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:3266-1",
"initial_release_date": "2019-12-11T10:19:12Z",
"revision_history": [
{
"date": "2019-12-11T10:19:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-cavs-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-hmac-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-libs0-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-mysql-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-nm-5.1.3-26.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.aarch64",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.aarch64",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-5.1.3-26.13.1.i586",
"product_id": "strongswan-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.i586",
"product_id": "strongswan-cavs-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.i586",
"product_id": "strongswan-hmac-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.i586",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.i586",
"product_id": "strongswan-libs0-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.i586",
"product_id": "strongswan-mysql-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.i586",
"product_id": "strongswan-nm-5.1.3-26.13.1.i586"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.i586",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.i586",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-doc-5.1.3-26.13.1.noarch",
"product": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch",
"product_id": "strongswan-doc-5.1.3-26.13.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-cavs-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-hmac-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-libs0-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-mysql-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-nm-5.1.3-26.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.ppc64le",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.ppc64le",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-5.1.3-26.13.1.s390",
"product_id": "strongswan-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.s390",
"product_id": "strongswan-cavs-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390",
"product_id": "strongswan-hmac-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390",
"product_id": "strongswan-libs0-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.s390",
"product_id": "strongswan-mysql-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.s390",
"product_id": "strongswan-nm-5.1.3-26.13.1.s390"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.s390",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.s390",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-5.1.3-26.13.1.s390x",
"product_id": "strongswan-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.s390x",
"product_id": "strongswan-cavs-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x",
"product_id": "strongswan-hmac-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x",
"product_id": "strongswan-libs0-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.s390x",
"product_id": "strongswan-mysql-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.s390x",
"product_id": "strongswan-nm-5.1.3-26.13.1.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.s390x",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.s390x",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-cavs-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-cavs-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-cavs-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-hmac-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-ipsec-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-libs0-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-mysql-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-mysql-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-nm-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-nm-5.1.3-26.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.1.3-26.13.1.x86_64",
"product": {
"name": "strongswan-sqlite-5.1.3-26.13.1.x86_64",
"product_id": "strongswan-sqlite-5.1.3-26.13.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 5",
"product": {
"name": "SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.1.3-26.13.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.1.3-26.13.1.noarch as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch"
},
"product_reference": "strongswan-doc-5.1.3-26.13.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.1.3-26.13.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-hmac-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.1.3-26.13.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.1.3-26.13.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64"
},
"product_reference": "strongswan-libs0-5.1.3-26.13.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-10811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10811"
}
],
"notes": [
{
"category": "general",
"text": "strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10811",
"url": "https://www.suse.com/security/cve/CVE-2018-10811"
},
{
"category": "external",
"summary": "SUSE Bug 1093536 for CVE-2018-10811",
"url": "https://bugzilla.suse.com/1093536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-12-11T10:19:12Z",
"details": "important"
}
],
"title": "CVE-2018-10811"
},
{
"cve": "CVE-2018-16151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16151"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16151",
"url": "https://www.suse.com/security/cve/CVE-2018-16151"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-12-11T10:19:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-16151"
},
{
"cve": "CVE-2018-16152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16152"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16152",
"url": "https://www.suse.com/security/cve/CVE-2018-16152"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16152",
"url": "https://bugzilla.suse.com/1107874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-12-11T10:19:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-16152"
},
{
"cve": "CVE-2018-17540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17540"
}
],
"notes": [
{
"category": "general",
"text": "The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17540",
"url": "https://www.suse.com/security/cve/CVE-2018-17540"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-12-11T10:19:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-17540"
},
{
"cve": "CVE-2018-5388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5388"
}
],
"notes": [
{
"category": "general",
"text": "In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5388",
"url": "https://www.suse.com/security/cve/CVE-2018-5388"
},
{
"category": "external",
"summary": "SUSE Bug 1094462 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "external",
"summary": "SUSE Bug 1101792 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1101792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Enterprise Storage 5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Enterprise Storage 5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.s390x",
"SUSE OpenStack Cloud 7:strongswan-libs0-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-doc-5.1.3-26.13.1.noarch",
"SUSE OpenStack Cloud 8:strongswan-hmac-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-ipsec-5.1.3-26.13.1.x86_64",
"SUSE OpenStack Cloud 8:strongswan-libs0-5.1.3-26.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-12-11T10:19:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-5388"
}
]
}
suse-su-2019:3056-1
Vulnerability from csaf_suse
Published
2019-11-25 16:30
Modified
2019-11-25 16:30
Summary
Security update for strongswan
Notes
Title of the patch
Security update for strongswan
Description of the patch
This update for strongswan fixes the following issues:
Security issues fixed:
- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker
with local user credentials to resource exhaustion and denial of service while
reading from the socket (bsc#1094462).
- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if
the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF
(bsc#1093536).
- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which
might lead to authorization bypass (bsc#1107874).
- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845).
Patchnames
SUSE-2019-3056,SUSE-SLE-Module-Basesystem-15-2019-3056,SUSE-SLE-Module-Basesystem-15-SP1-2019-3056,SUSE-SLE-Module-Development-Tools-OBS-15-2019-3056,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-3056,SUSE-SLE-Module-Packagehub-Subpackages-15-2019-3056
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for strongswan",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for strongswan fixes the following issues:\n\nSecurity issues fixed: \n\n- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker \n with local user credentials to resource exhaustion and denial of service while \n reading from the socket (bsc#1094462).\n- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if \n the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF \n (bsc#1093536).\n- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which \n might lead to authorization bypass (bsc#1107874).\n- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845). \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-3056,SUSE-SLE-Module-Basesystem-15-2019-3056,SUSE-SLE-Module-Basesystem-15-SP1-2019-3056,SUSE-SLE-Module-Development-Tools-OBS-15-2019-3056,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-3056,SUSE-SLE-Module-Packagehub-Subpackages-15-2019-3056",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_3056-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:3056-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20193056-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:3056-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-November/006173.html"
},
{
"category": "self",
"summary": "SUSE Bug 1093536",
"url": "https://bugzilla.suse.com/1093536"
},
{
"category": "self",
"summary": "SUSE Bug 1094462",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "self",
"summary": "SUSE Bug 1107874",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "self",
"summary": "SUSE Bug 1109845",
"url": "https://bugzilla.suse.com/1109845"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10811 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16151 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16152 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17540 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5388 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5388/"
}
],
"title": "Security update for strongswan",
"tracking": {
"current_release_date": "2019-11-25T16:30:01Z",
"generator": {
"date": "2019-11-25T16:30:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:3056-1",
"initial_release_date": "2019-11-25T16:30:01Z",
"revision_history": [
{
"date": "2019-11-25T16:30:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-hmac-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-hmac-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-ipsec-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-ipsec-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-libs0-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-libs0-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-mysql-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-mysql-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-nm-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-nm-5.6.0-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-4.3.2.aarch64",
"product": {
"name": "strongswan-sqlite-5.6.0-4.3.2.aarch64",
"product_id": "strongswan-sqlite-5.6.0-4.3.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-5.6.0-4.3.2.i586",
"product_id": "strongswan-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-hmac-5.6.0-4.3.2.i586",
"product_id": "strongswan-hmac-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-ipsec-5.6.0-4.3.2.i586",
"product_id": "strongswan-ipsec-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-libs0-5.6.0-4.3.2.i586",
"product_id": "strongswan-libs0-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-mysql-5.6.0-4.3.2.i586",
"product_id": "strongswan-mysql-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-nm-5.6.0-4.3.2.i586",
"product_id": "strongswan-nm-5.6.0-4.3.2.i586"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-4.3.2.i586",
"product": {
"name": "strongswan-sqlite-5.6.0-4.3.2.i586",
"product_id": "strongswan-sqlite-5.6.0-4.3.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-doc-5.6.0-4.3.2.noarch",
"product": {
"name": "strongswan-doc-5.6.0-4.3.2.noarch",
"product_id": "strongswan-doc-5.6.0-4.3.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-hmac-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-hmac-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-ipsec-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-libs0-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-libs0-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-mysql-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-mysql-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-nm-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-nm-5.6.0-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-4.3.2.ppc64le",
"product": {
"name": "strongswan-sqlite-5.6.0-4.3.2.ppc64le",
"product_id": "strongswan-sqlite-5.6.0-4.3.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-5.6.0-4.3.2.s390x",
"product_id": "strongswan-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-hmac-5.6.0-4.3.2.s390x",
"product_id": "strongswan-hmac-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-ipsec-5.6.0-4.3.2.s390x",
"product_id": "strongswan-ipsec-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-libs0-5.6.0-4.3.2.s390x",
"product_id": "strongswan-libs0-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-mysql-5.6.0-4.3.2.s390x",
"product_id": "strongswan-mysql-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-nm-5.6.0-4.3.2.s390x",
"product_id": "strongswan-nm-5.6.0-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-4.3.2.s390x",
"product": {
"name": "strongswan-sqlite-5.6.0-4.3.2.s390x",
"product_id": "strongswan-sqlite-5.6.0-4.3.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-hmac-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-hmac-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-ipsec-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-ipsec-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-libs0-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-libs0-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-mysql-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-mysql-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-nm-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-nm-5.6.0-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-4.3.2.x86_64",
"product": {
"name": "strongswan-sqlite-5.6.0-4.3.2.x86_64",
"product_id": "strongswan-sqlite-5.6.0-4.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.6.0-4.3.2.noarch as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch"
},
"product_reference": "strongswan-doc-5.6.0-4.3.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.6.0-4.3.2.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch"
},
"product_reference": "strongswan-doc-5.6.0-4.3.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-hmac-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-ipsec-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-libs0-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-4.3.2.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64"
},
"product_reference": "strongswan-nm-5.6.0-4.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-4.3.2.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le"
},
"product_reference": "strongswan-nm-5.6.0-4.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-4.3.2.s390x as component of SUSE Linux Enterprise Module for Package Hub 15",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x"
},
"product_reference": "strongswan-nm-5.6.0-4.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-4.3.2.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
},
"product_reference": "strongswan-nm-5.6.0-4.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-10811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10811"
}
],
"notes": [
{
"category": "general",
"text": "strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10811",
"url": "https://www.suse.com/security/cve/CVE-2018-10811"
},
{
"category": "external",
"summary": "SUSE Bug 1093536 for CVE-2018-10811",
"url": "https://bugzilla.suse.com/1093536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-25T16:30:01Z",
"details": "important"
}
],
"title": "CVE-2018-10811"
},
{
"cve": "CVE-2018-16151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16151"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16151",
"url": "https://www.suse.com/security/cve/CVE-2018-16151"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-25T16:30:01Z",
"details": "moderate"
}
],
"title": "CVE-2018-16151"
},
{
"cve": "CVE-2018-16152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16152"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16152",
"url": "https://www.suse.com/security/cve/CVE-2018-16152"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16152",
"url": "https://bugzilla.suse.com/1107874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-25T16:30:01Z",
"details": "moderate"
}
],
"title": "CVE-2018-16152"
},
{
"cve": "CVE-2018-17540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17540"
}
],
"notes": [
{
"category": "general",
"text": "The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17540",
"url": "https://www.suse.com/security/cve/CVE-2018-17540"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-25T16:30:01Z",
"details": "moderate"
}
],
"title": "CVE-2018-17540"
},
{
"cve": "CVE-2018-5388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5388"
}
],
"notes": [
{
"category": "general",
"text": "In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5388",
"url": "https://www.suse.com/security/cve/CVE-2018-5388"
},
{
"category": "external",
"summary": "SUSE Bug 1094462 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "external",
"summary": "SUSE Bug 1101792 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1101792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-doc-5.6.0-4.3.2.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-hmac-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-ipsec-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:strongswan-libs0-5.6.0-4.3.2.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.s390x",
"SUSE Linux Enterprise Module for Package Hub 15:strongswan-nm-5.6.0-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-25T16:30:01Z",
"details": "moderate"
}
],
"title": "CVE-2018-5388"
}
]
}
CERTFR-2018-AVI-589
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | N/A | IBM Cúram Social Program Management (SPM) versions 6.1.x antérieures à 6.1.1.6 iFix2 | ||
| IBM | N/A | IBM Security SiteProtector System versions 3.0.0.x antérieures à 3.0.0.20 | ||
| IBM | N/A | IBM Cúram Social Program Management (SPM) versions 7.x antérieures à 7.0.4.0 iFix1 | ||
| IBM | N/A | VRA - Vyatta 5600 | ||
| IBM | WebSphere | IBM Java SDK dans IBM WebSphere Application Server versions 1.0.0.0 à 1.0.0.7 et 2.2.0.0 à 2.2.6.0 | ||
| IBM | N/A | IBM Cúram Social Program Management (SPM) versions 6.2.x antérieures à 6.2.0.6 iFix2 | ||
| IBM | QRadar | IBM QRadar Network Security versions 5.5.x antérieures à 5.5.0.1 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.6.x antérieures à 7.6.0.3 | ||
| IBM | N/A | IBM Social Program Management Design System versions antérieures à 1.4.0 | ||
| IBM | N/A | IBM Cúram Social Program Management (SPM) versions 6.0.5.x antérieures à 6.0.5.10 iFix4 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.1.x antérieures à 7.1.0.20 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.5.2.x antérieures à 7.2.10 | ||
| IBM | N/A | IBM Cúram Social Program Management (SPM) versions 7.0.x antérieures à 7.0.1.3 | ||
| IBM | N/A | IBM Lotus Protector for Mail Security version 2.8.1.0 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.2.x antérieures à 7.2.0.17 | ||
| IBM | QRadar | IBM QRadar Network Security versions 5.4.x antérieures à 5.4.0.6 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.5.1.x antérieures à 7.1.10 | ||
| IBM | N/A | IBM Security SiteProtector System versions 3.1.1.x antérieures à 3.1.1.17 | ||
| IBM | N/A | IBM DataPower Gateway versions 7.5.0.x antérieures à 7.5.0.11 | ||
| IBM | WebSphere | WebSphere Application Server versions antérieures à 9.0.0.10 | ||
| IBM | N/A | IBM Voice Gateway versions antérieures à 1.0.0.7a | ||
| IBM | N/A | IBM Lotus Protector for Mail Security version 2.8.3.0 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM C\u00faram Social Program Management (SPM) versions 6.1.x ant\u00e9rieures \u00e0 6.1.1.6 iFix2",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Security SiteProtector System versions 3.0.0.x ant\u00e9rieures \u00e0 3.0.0.20",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management (SPM) versions 7.x ant\u00e9rieures \u00e0 7.0.4.0 iFix1",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VRA - Vyatta 5600",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Java SDK dans IBM WebSphere Application Server versions 1.0.0.0 \u00e0 1.0.0.7 et 2.2.0.0 \u00e0 2.2.6.0",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management (SPM) versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.6 iFix2",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM QRadar Network Security versions 5.5.x ant\u00e9rieures \u00e0 5.5.0.1",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.6.x ant\u00e9rieures \u00e0 7.6.0.3",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Social Program Management Design System versions ant\u00e9rieures \u00e0 1.4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management (SPM) versions 6.0.5.x ant\u00e9rieures \u00e0 6.0.5.10 iFix4",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.1.x ant\u00e9rieures \u00e0 7.1.0.20",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.5.2.x ant\u00e9rieures \u00e0 7.2.10",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management (SPM) versions 7.0.x ant\u00e9rieures \u00e0 7.0.1.3",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Lotus Protector for Mail Security version 2.8.1.0",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.2.x ant\u00e9rieures \u00e0 7.2.0.17",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM QRadar Network Security versions 5.4.x ant\u00e9rieures \u00e0 5.4.0.6",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.5.1.x ant\u00e9rieures \u00e0 7.1.10",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Security SiteProtector System versions 3.1.1.x ant\u00e9rieures \u00e0 3.1.1.17",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM DataPower Gateway versions 7.5.0.x ant\u00e9rieures \u00e0 7.5.0.11",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions ant\u00e9rieures \u00e0 9.0.0.10",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Voice Gateway versions ant\u00e9rieures \u00e0 1.0.0.7a",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Lotus Protector for Mail Security version 2.8.3.0",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-16058",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16058"
},
{
"name": "CVE-2018-10873",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10873"
},
{
"name": "CVE-2018-3721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3721"
},
{
"name": "CVE-2018-16396",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16396"
},
{
"name": "CVE-2018-0737",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0737"
},
{
"name": "CVE-2018-10933",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10933"
},
{
"name": "CVE-2018-16658",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16658"
},
{
"name": "CVE-2018-0739",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0739"
},
{
"name": "CVE-2018-10902",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10902"
},
{
"name": "CVE-2018-15594",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15594"
},
{
"name": "CVE-2018-16151",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16151"
},
{
"name": "CVE-2018-8039",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8039"
},
{
"name": "CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"name": "CVE-2018-1671",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1671"
},
{
"name": "CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"name": "CVE-2018-6554",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6554"
},
{
"name": "CVE-2018-1652",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1652"
},
{
"name": "CVE-2018-16842",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16842"
},
{
"name": "CVE-2018-17182",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17182"
},
{
"name": "CVE-2018-2964",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2964"
},
{
"name": "CVE-2018-3139",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3139"
},
{
"name": "CVE-2018-15572",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15572"
},
{
"name": "CVE-2018-14609",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14609"
},
{
"name": "CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"name": "CVE-2018-14618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14618"
},
{
"name": "CVE-2018-16395",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16395"
},
{
"name": "CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"name": "CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"name": "CVE-2018-16056",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16056"
},
{
"name": "CVE-2018-3180",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3180"
},
{
"name": "CVE-2018-1900",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1900"
},
{
"name": "CVE-2018-14617",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14617"
},
{
"name": "CVE-2017-3735",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3735"
},
{
"name": "CVE-2018-16839",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16839"
},
{
"name": "CVE-2018-14633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14633"
},
{
"name": "CVE-2018-14678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14678"
},
{
"name": "CVE-2018-13099",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13099"
},
{
"name": "CVE-2018-0732",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0732"
},
{
"name": "CVE-2018-9516",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9516"
},
{
"name": "CVE-2018-9363",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9363"
},
{
"name": "CVE-2018-16152",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16152"
},
{
"name": "CVE-2018-10938",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10938"
},
{
"name": "CVE-2018-14734",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14734"
},
{
"name": "CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"name": "CVE-2018-1957",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1957"
},
{
"name": "CVE-2018-1654",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1654"
},
{
"name": "CVE-2018-0495",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0495"
},
{
"name": "CVE-2018-18065",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18065"
},
{
"name": "CVE-2018-8013",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8013"
},
{
"name": "CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"name": "CVE-2018-16276",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16276"
}
],
"initial_release_date": "2018-12-10T00:00:00",
"last_revision_date": "2018-12-11T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-589",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-12-10T00:00:00.000000"
},
{
"description": "Ajout de deux bulletins de s\u00e9curit\u00e9 IBM Lotus Protector",
"revision_date": "2018-12-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10732880 du 07 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10732880"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10739019 du 05 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739019"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10744291 du 05 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10744291"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10744157 du 07 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10744157"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10739035 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739035"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10744557 du 07 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10744557"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10739985 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739985"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10740799 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10740799"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10743847 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10743847"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10736137 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10736137"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10742369 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10742369"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10739027 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739027"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10744247 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10744247"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10744553 du 06 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10744553"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10740789 du 07 d\u00e9cembre 2018",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10740789"
}
]
}
opensuse-su-2019:2594-1
Vulnerability from csaf_opensuse
Published
2019-11-30 19:16
Modified
2019-11-30 19:16
Summary
Security update for strongswan
Notes
Title of the patch
Security update for strongswan
Description of the patch
This update for strongswan fixes the following issues:
Security issues fixed:
- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker
with local user credentials to resource exhaustion and denial of service while
reading from the socket (bsc#1094462).
- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if
the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF
(bsc#1093536).
- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which
might lead to authorization bypass (bsc#1107874).
- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-2594
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for strongswan",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for strongswan fixes the following issues:\n\nSecurity issues fixed: \n\n- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker \n with local user credentials to resource exhaustion and denial of service while \n reading from the socket (bsc#1094462).\n- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if \n the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF \n (bsc#1093536).\n- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which \n might lead to authorization bypass (bsc#1107874).\n- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845). \n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2594",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2594-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2594-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V72HVR7HTXMHBWIRVKULTGTBNB7GX2V3/#V72HVR7HTXMHBWIRVKULTGTBNB7GX2V3"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2594-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V72HVR7HTXMHBWIRVKULTGTBNB7GX2V3/#V72HVR7HTXMHBWIRVKULTGTBNB7GX2V3"
},
{
"category": "self",
"summary": "SUSE Bug 1093536",
"url": "https://bugzilla.suse.com/1093536"
},
{
"category": "self",
"summary": "SUSE Bug 1094462",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "self",
"summary": "SUSE Bug 1107874",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "self",
"summary": "SUSE Bug 1109845",
"url": "https://bugzilla.suse.com/1109845"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10811 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16151 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16152 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17540 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5388 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5388/"
}
],
"title": "Security update for strongswan",
"tracking": {
"current_release_date": "2019-11-30T19:16:42Z",
"generator": {
"date": "2019-11-30T19:16:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2594-1",
"initial_release_date": "2019-11-30T19:16:42Z",
"revision_history": [
{
"date": "2019-11-30T19:16:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"product": {
"name": "strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"product_id": "strongswan-doc-5.6.0-lp150.3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-hmac-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-libs0-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-mysql-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-nm-5.6.0-lp150.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64",
"product": {
"name": "strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64",
"product_id": "strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.6.0-lp150.3.3.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch"
},
"product_reference": "strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-mysql-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
},
"product_reference": "strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-10811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10811"
}
],
"notes": [
{
"category": "general",
"text": "strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10811",
"url": "https://www.suse.com/security/cve/CVE-2018-10811"
},
{
"category": "external",
"summary": "SUSE Bug 1093536 for CVE-2018-10811",
"url": "https://bugzilla.suse.com/1093536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T19:16:42Z",
"details": "important"
}
],
"title": "CVE-2018-10811"
},
{
"cve": "CVE-2018-16151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16151"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16151",
"url": "https://www.suse.com/security/cve/CVE-2018-16151"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T19:16:42Z",
"details": "moderate"
}
],
"title": "CVE-2018-16151"
},
{
"cve": "CVE-2018-16152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16152"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16152",
"url": "https://www.suse.com/security/cve/CVE-2018-16152"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16152",
"url": "https://bugzilla.suse.com/1107874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T19:16:42Z",
"details": "moderate"
}
],
"title": "CVE-2018-16152"
},
{
"cve": "CVE-2018-17540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17540"
}
],
"notes": [
{
"category": "general",
"text": "The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17540",
"url": "https://www.suse.com/security/cve/CVE-2018-17540"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T19:16:42Z",
"details": "moderate"
}
],
"title": "CVE-2018-17540"
},
{
"cve": "CVE-2018-5388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5388"
}
],
"notes": [
{
"category": "general",
"text": "In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5388",
"url": "https://www.suse.com/security/cve/CVE-2018-5388"
},
{
"category": "external",
"summary": "SUSE Bug 1094462 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "external",
"summary": "SUSE Bug 1101792 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1101792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:strongswan-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-doc-5.6.0-lp150.3.3.1.noarch",
"openSUSE Leap 15.0:strongswan-hmac-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-ipsec-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-libs0-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-mysql-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-nm-5.6.0-lp150.3.3.1.x86_64",
"openSUSE Leap 15.0:strongswan-sqlite-5.6.0-lp150.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T19:16:42Z",
"details": "moderate"
}
],
"title": "CVE-2018-5388"
}
]
}
opensuse-su-2019:2598-1
Vulnerability from csaf_opensuse
Published
2019-11-30 23:16
Modified
2019-11-30 23:16
Summary
Security update for strongswan
Notes
Title of the patch
Security update for strongswan
Description of the patch
This update for strongswan fixes the following issues:
Security issues fixed:
- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker
with local user credentials to resource exhaustion and denial of service while
reading from the socket (bsc#1094462).
- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if
the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF
(bsc#1093536).
- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which
might lead to authorization bypass (bsc#1107874).
- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-2598
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for strongswan",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for strongswan fixes the following issues:\n\nSecurity issues fixed: \n\n- CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker \n with local user credentials to resource exhaustion and denial of service while \n reading from the socket (bsc#1094462).\n- CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if \n the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF \n (bsc#1093536).\n- CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which \n might lead to authorization bypass (bsc#1107874).\n- CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845). \n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2598",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2598-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2598-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V6PYSTPUD6KHGTVSWSXGQVRQQ6SLUQ6H/#V6PYSTPUD6KHGTVSWSXGQVRQQ6SLUQ6H"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2598-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V6PYSTPUD6KHGTVSWSXGQVRQQ6SLUQ6H/#V6PYSTPUD6KHGTVSWSXGQVRQQ6SLUQ6H"
},
{
"category": "self",
"summary": "SUSE Bug 1093536",
"url": "https://bugzilla.suse.com/1093536"
},
{
"category": "self",
"summary": "SUSE Bug 1094462",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "self",
"summary": "SUSE Bug 1107874",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "self",
"summary": "SUSE Bug 1109845",
"url": "https://bugzilla.suse.com/1109845"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10811 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16151 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16152 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17540 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5388 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5388/"
}
],
"title": "Security update for strongswan",
"tracking": {
"current_release_date": "2019-11-30T23:16:02Z",
"generator": {
"date": "2019-11-30T23:16:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2598-1",
"initial_release_date": "2019-11-30T23:16:02Z",
"revision_history": [
{
"date": "2019-11-30T23:16:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"product": {
"name": "strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"product_id": "strongswan-doc-5.6.0-lp151.4.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "strongswan-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-hmac-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-libs0-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-mysql-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-nm-5.6.0-lp151.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64",
"product": {
"name": "strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64",
"product_id": "strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-doc-5.6.0-lp151.4.3.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch"
},
"product_reference": "strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-hmac-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-libs0-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-mysql-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-nm-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
},
"product_reference": "strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-10811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10811"
}
],
"notes": [
{
"category": "general",
"text": "strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10811",
"url": "https://www.suse.com/security/cve/CVE-2018-10811"
},
{
"category": "external",
"summary": "SUSE Bug 1093536 for CVE-2018-10811",
"url": "https://bugzilla.suse.com/1093536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T23:16:02Z",
"details": "important"
}
],
"title": "CVE-2018-10811"
},
{
"cve": "CVE-2018-16151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16151"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16151",
"url": "https://www.suse.com/security/cve/CVE-2018-16151"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-16151",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T23:16:02Z",
"details": "moderate"
}
],
"title": "CVE-2018-16151"
},
{
"cve": "CVE-2018-16152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16152"
}
],
"notes": [
{
"category": "general",
"text": "In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16152",
"url": "https://www.suse.com/security/cve/CVE-2018-16152"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-16152",
"url": "https://bugzilla.suse.com/1107874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T23:16:02Z",
"details": "moderate"
}
],
"title": "CVE-2018-16152"
},
{
"cve": "CVE-2018-17540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17540"
}
],
"notes": [
{
"category": "general",
"text": "The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17540",
"url": "https://www.suse.com/security/cve/CVE-2018-17540"
},
{
"category": "external",
"summary": "SUSE Bug 1107874 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1107874"
},
{
"category": "external",
"summary": "SUSE Bug 1109845 for CVE-2018-17540",
"url": "https://bugzilla.suse.com/1109845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T23:16:02Z",
"details": "moderate"
}
],
"title": "CVE-2018-17540"
},
{
"cve": "CVE-2018-5388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5388"
}
],
"notes": [
{
"category": "general",
"text": "In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5388",
"url": "https://www.suse.com/security/cve/CVE-2018-5388"
},
{
"category": "external",
"summary": "SUSE Bug 1094462 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1094462"
},
{
"category": "external",
"summary": "SUSE Bug 1101792 for CVE-2018-5388",
"url": "https://bugzilla.suse.com/1101792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:strongswan-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-doc-5.6.0-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:strongswan-hmac-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-ipsec-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-libs0-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-mysql-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-nm-5.6.0-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:strongswan-sqlite-5.6.0-lp151.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-30T23:16:02Z",
"details": "moderate"
}
],
"title": "CVE-2018-5388"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…