[SECURITY] [DLA 345-1] strongswan security update

2015-11-1912:46:30

lists.debian.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.5

Confidence

High

EPSS

0.005

Percentile

77.1%

JSON

Package : strongswan
Version : 4.4.1-5.8
CVE ID : CVE-2015-8023

Tobias Brunner found an authentication bypass vulnerability in
strongSwan, an IKE/IPsec suite.

Due to insufficient validation of its local state the server
implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin
can be tricked into successfully concluding the authentication without
providing valid credentials.

It's possible to recognize such attacks by looking at the server logs.
The following log message would be seen during the client
authentication:

EAP method EAP_MSCHAPV2 succeeded, no MSK established

OSVersionArchitecturePackageVersionFilename
Debian7amd64strongswan-dbg< 4.5.2-1.5+deb7u8strongswan-dbg_4.5.2-1.5+deb7u8_amd64.deb
Debian8mipsellibstrongswan-standard-plugins< 5.2.1-6+deb8u2libstrongswan-standard-plugins_5.2.1-6+deb8u2_mipsel.deb
Debian6i386strongswan-ikev1< 4.4.1-5.8strongswan-ikev1_4.4.1-5.8_i386.deb
Debian8mipsstrongswan-starter< 5.2.1-6+deb8u2strongswan-starter_5.2.1-6+deb8u2_mips.deb
Debian8armhfstrongswan-nm< 5.2.1-6+deb8u2strongswan-nm_5.2.1-6+deb8u2_armhf.deb
Debian8mipslibstrongswan< 5.2.1-6+deb8u2libstrongswan_5.2.1-6+deb8u2_mips.deb
Debian8armhflibstrongswan-extra-plugins< 5.2.1-6+deb8u2libstrongswan-extra-plugins_5.2.1-6+deb8u2_armhf.deb
Debian7mipselstrongswan-starter< 4.5.2-1.5+deb7u8strongswan-starter_4.5.2-1.5+deb7u8_mipsel.deb
Debian7s390strongswan-dbg< 4.5.2-1.5+deb7u8strongswan-dbg_4.5.2-1.5+deb7u8_s390.deb
Debian8i386strongswan-dbg< 5.2.1-6+deb8u2strongswan-dbg_5.2.1-6+deb8u2_i386.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	amd64	strongswan-dbg	< 4.5.2-1.5+deb7u8	strongswan-dbg_4.5.2-1.5+deb7u8_amd64.deb
Debian	8	mipsel	libstrongswan-standard-plugins	< 5.2.1-6+deb8u2	libstrongswan-standard-plugins_5.2.1-6+deb8u2_mipsel.deb
Debian	6	i386	strongswan-ikev1	< 4.4.1-5.8	strongswan-ikev1_4.4.1-5.8_i386.deb
Debian	8	mips	strongswan-starter	< 5.2.1-6+deb8u2	strongswan-starter_5.2.1-6+deb8u2_mips.deb
Debian	8	armhf	strongswan-nm	< 5.2.1-6+deb8u2	strongswan-nm_5.2.1-6+deb8u2_armhf.deb
Debian	8	mips	libstrongswan	< 5.2.1-6+deb8u2	libstrongswan_5.2.1-6+deb8u2_mips.deb
Debian	8	armhf	libstrongswan-extra-plugins	< 5.2.1-6+deb8u2	libstrongswan-extra-plugins_5.2.1-6+deb8u2_armhf.deb
Debian	7	mipsel	strongswan-starter	< 4.5.2-1.5+deb7u8	strongswan-starter_4.5.2-1.5+deb7u8_mipsel.deb
Debian	7	s390	strongswan-dbg	< 4.5.2-1.5+deb7u8	strongswan-dbg_4.5.2-1.5+deb7u8_s390.deb
Debian	8	i386	strongswan-dbg	< 5.2.1-6+deb8u2	strongswan-dbg_5.2.1-6+deb8u2_i386.deb