OESA-2022-1525

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1525

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2022-1525.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2022-1525

Upstream

CVE-2021-45079

Published

2022-02-11T11:03:31Z

Modified

2025-08-12T05:10:47.558795Z

Summary

strongswan security update

Details

The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key exchange protocols in conjunction with the native NETKEY IPsec stack of the Linux kernel.

Security Fix(es):

In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication.(CVE-2021-45079)

Database specific

{
    "severity": "Critical"
}

References

Affected packages

openEuler:20.03-LTS-SP1 / strongswan

Package

Name: strongswan
Purl: pkg:rpm/openEuler/strongswan&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.7.2-8.oe1

Ecosystem specific

{
    "src": [
        "strongswan-5.7.2-8.oe1.src.rpm"
    ],
    "noarch": [
        "strongswan-help-5.7.2-8.oe1.noarch.rpm"
    ],
    "x86_64": [
        "strongswan-debuginfo-5.7.2-8.oe1.x86_64.rpm",
        "strongswan-5.7.2-8.oe1.x86_64.rpm",
        "strongswan-debugsource-5.7.2-8.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "strongswan-debugsource-5.7.2-8.oe1.aarch64.rpm",
        "strongswan-5.7.2-8.oe1.aarch64.rpm",
        "strongswan-debuginfo-5.7.2-8.oe1.aarch64.rpm"
    ]
}

openEuler:20.03-LTS-SP2 / strongswan

Package

Name: strongswan
Purl: pkg:rpm/openEuler/strongswan&distro=openEuler-20.03-LTS-SP2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.7.2-8.oe1

Ecosystem specific

{
    "src": [
        "strongswan-5.7.2-8.oe1.src.rpm"
    ],
    "noarch": [
        "strongswan-help-5.7.2-8.oe1.noarch.rpm"
    ],
    "x86_64": [
        "strongswan-debugsource-5.7.2-8.oe1.x86_64.rpm",
        "strongswan-5.7.2-8.oe1.x86_64.rpm",
        "strongswan-debuginfo-5.7.2-8.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "strongswan-debuginfo-5.7.2-8.oe1.aarch64.rpm",
        "strongswan-debugsource-5.7.2-8.oe1.aarch64.rpm",
        "strongswan-5.7.2-8.oe1.aarch64.rpm"
    ]
}

openEuler:20.03-LTS-SP3 / strongswan

Package

Name: strongswan
Purl: pkg:rpm/openEuler/strongswan&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.7.2-9.oe1

Ecosystem specific

{
    "src": [
        "strongswan-5.7.2-9.oe1.src.rpm"
    ],
    "noarch": [
        "strongswan-help-5.7.2-9.oe1.noarch.rpm"
    ],
    "x86_64": [
        "strongswan-5.7.2-9.oe1.x86_64.rpm",
        "strongswan-debuginfo-5.7.2-9.oe1.x86_64.rpm",
        "strongswan-debugsource-5.7.2-9.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "strongswan-debuginfo-5.7.2-9.oe1.aarch64.rpm",
        "strongswan-5.7.2-9.oe1.aarch64.rpm",
        "strongswan-debugsource-5.7.2-9.oe1.aarch64.rpm"
    ]
}