PT-2022-12301 · Unknown+4 · Strongswan+4

Zhuowei Zhang

Published

2022-01-24

Updated

2024-06-15

CVE-2021-45079

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions strongSwan versions prior to 5.9.5

Description A malicious responder can send an EAP-Success message too early without actually authenticating the client. This can occur even without server authentication in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2.

Recommendations For strongSwan versions prior to 5.9.5, update to version 5.9.5 or later to resolve the issue. As a temporary workaround, consider implementing additional authentication measures to verify the authenticity of EAP-Success messages. Restrict access to IKEv2 authentication to minimize the risk of exploitation.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2022-1584

ALT-PU-2022-2456

ALT-PU-2024-7917

AZL-8473

CVE-2021-45079

DLA-2909-1

DSA-5056-1

OESA-2022-1525

OESA-2022-2068

OPENSUSE-SU-2022:0492-1

OPENSUSE-SU-2022_0492-1

OPENSUSE-SU-2024:11808-1

ROSA-SA-2023-2274

SUSE-SU-2022:0202-1

SUSE-SU-2022:0211-1

SUSE-SU-2022:0492-1

SUSE-SU-2022:14887-1

SUSE-SU-2022_0202-1

SUSE-SU-2022_0211-1

SUSE-SU-2022_0492-1

USN-5250-1

USN-5250-2

Affected Products

Alt Linux

Linuxmint

Suse

Ubuntu

Strongswan

PT-2022-12301 · Unknown+4 · Strongswan+4

CVE-2021-45079

Weakness Enumeration

Related Identifiers

Affected Products

References · 43