Security
Headlines
HeadlinesLatestCVEs

Headline

Ubuntu Security Notice USN-6772-1

Ubuntu Security Notice 6772-1 - Jan Schermer discovered that strongSwan incorrectly validated client certificates in certain configurations. A remote attacker could possibly use this issue to bypass access controls.

Packet Storm
#vulnerability#ubuntu
==========================================================================Ubuntu Security Notice USN-6772-1May 14, 2024strongswan vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTSSummary:Fraudulent security certificates could allow access controls to bebypassed.Software Description:- strongswan: IPsec VPN solutionDetails:Jan Schermer discovered that strongSwan incorrectly validated clientcertificates in certain configurations. A remote attacker could possiblyuse this issue to bypass access controls.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS   libstrongswan                   5.9.5-2ubuntu2.3   strongswan                      5.9.5-2ubuntu2.3In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-6772-1   CVE-2022-4967Package Information:   https://launchpad.net/ubuntu/+source/strongswan/5.9.5-2ubuntu2.3

Packet Storm: Latest News

CUPS IPP Attributes LAN Remote Code Execution