QwikSec

Security Database

CVE

CWE

Training

CVE-2021-41991

Published: Oct 18, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less-often-used cache entry by means of a random number generator, but this is not done correctly. Remote code execution might be a slight possibility.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/strongswan/strongswan/releases/tag/5.9.4

x_refsource_MISC

https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-%28cve-2021-41991%29.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

[debian-lts-announce] 20211019 [SECURITY] [DLA 2788-1] strongswan security update

mailing-list

x_refsource_MLIST

FEDORA-2021-0b37146973

vendor-advisory

x_refsource_FEDORA

FEDORA-2021-b3df83339e

vendor-advisory

x_refsource_FEDORA

FEDORA-2021-95fab6a482

vendor-advisory

x_refsource_FEDORA

https://cert-portal.siemens.com/productcert/pdf/ssa-539476.pdf

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2021-41991 - Security Vulnerability | QwikSec