Added security info on CVE-2013-6075 and CVE-2013-60765.1.1

author: Andreas Steffen <andreas.steffen@strongswan.org> 2013-10-31 22:11:11 +0100
committer: Andreas Steffen <andreas.steffen@strongswan.org> 2013-10-31 22:11:11 +0100
commit: 7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6 (patch)
tree: 4be1bebebd8749786f42bac446bbdb5aa7540753 /NEWS
parent: 643da9d2e6aa2fb3c91304fabc01340934228800 (diff)
download: strongswan-7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6.tar.bz2
strongswan-7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6.tar.xz
1 files changed, 9 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 815d8cd0c..35edec9b4 100644
--- a/NEWS
+++ b/NEWS
@@ -1,6 +1,15 @@
 strongswan-5.1.1
 ----------------
 
+- Fixed a denial-of-service vulnerability and potential authorization bypass
+  triggered by a crafted ID_DER_ASN1_DN ID payload. The cause is an insufficient
+  length check when comparing such identities. The vulnerability has been
+  registered as CVE-2013-6075.
+
+- Fixed a denial-of-service vulnerability triggered by a crafted IKEv1
+  fragmentation payload. The cause is a NULL pointer dereference. The
+  vulnerability has been registered as CVE-2013-6076.
+
 - The lean stand-alone pt-tls-client can set up a RFC 6876 PT-TLS session
   with a strongSwan policy enforcement point which uses the tnc-pdp charon
   plugin.
author	Andreas Steffen <andreas.steffen@strongswan.org>	2013-10-31 22:11:11 +0100
committer	Andreas Steffen <andreas.steffen@strongswan.org>	2013-10-31 22:11:11 +0100
commit	7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6 (patch)
tree	4be1bebebd8749786f42bac446bbdb5aa7540753 /NEWS
parent	643da9d2e6aa2fb3c91304fabc01340934228800 (diff)
download	strongswan-7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6.tar.bz2 strongswan-7b8fbd7402ffa10cc54fb79f1b0fbe13b5d3f6a6.tar.xz