SUSE-SU-2015:1196-1
- Source
- https://www.suse.com/support/update/announcement/2015/suse-su-20151196-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:1196-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2015:1196-1
- Upstream
- Related
- Published
- 2015-06-08T08:04:58Z
- Modified
- 2026-01-30T02:55:09.626732Z
- Summary
- Security update for strongswan
- Details
-
Strongswan was updated to fix one security issue.
The following vulnerability was fixed:
- CVE-2015-4171: Rogue servers were able to authenticate themselves with certificate issued by any CA the client trusts, to gain user credentials from a client in certain IKEv2 setups (bsc#933591)
- References
Affected packages
SUSE:Linux Enterprise Desktop 12
strongswan
Package
- Name
- strongswan
- Purl
- pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Desktop%2012
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.1.3-18.1
SUSE:Linux Enterprise Server 12
strongswan
Package
- Name
- strongswan
- Purl
- pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.1.3-18.1
SUSE:Linux Enterprise Server for SAP Applications 12
strongswan
Package
- Name
- strongswan
- Purl
- pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.1.3-18.1