CVE-2021-41990
Ubuntu Security Notice USN-5111-1
Severity Score
Exploit Likelihood
Affected Versions
23Public Exploits
0Exploited in Wild
-Decision
Descriptions
The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signature. For example, this can be triggered by an unrelated self-signed CA certificate sent by an initiator. Remote code execution cannot occur.
El plugin gmp en strongSwan versiones anteriores a 5.9.4, presenta un desbordamiento de enteros remoto por medio de un certificado diseñado con una firma RSASSA-PSS. Por ejemplo, esto puede ser desencadenado por un certificado de CA autofirmado no relacionado enviado por un iniciador. Una ejecución de código remota no puede ocurrir
It was discovered that strongSwan incorrectly handled certain RSASSA-PSS signatures. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service. It was discovered that strongSwan incorrectly handled replacing certificates in the cache. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-10-04 CVE Reserved
- 2021-10-18 CVE Published
- 2024-08-04 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-539476.pdf | Third Party Advisory |
|
| https://github.com/strongswan/strongswan/releases/tag/5.9.4 | Release Notes | |
| https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-%28cve-20... | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|