PublicDateAtUSN: 2021-10-18 12:00:00 UTC
Candidate: CVE-2021-41991
CRD: 2021-10-18 12:00:00 UTC
PublicDate: 2021-10-18 14:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41991
 https://ubuntu.com/security/notices/USN-5111-1
 https://ubuntu.com/security/notices/USN-5111-2
Description:
 The in-memory certificate cache in strongSwan before 5.9.4 has a remote
 integer overflow upon receiving many requests with different certificates
 to fill the cache and later trigger the replacement of cache entries. The
 code attempts to select a less-often-used cache entry by means of a random
 number generator, but this is not done correctly. Remote code execution
 might be a slight possibility.
Ubuntu-Description: 
Notes: 
 mdeslaur> affects 4.2.10+
Mitigation: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_strongswan:
upstream_strongswan: needs-triage
trusty_strongswan: ignored (out of standard support)
trusty/esm_strongswan: released (5.1.2-0ubuntu2.11+esm1)
xenial_strongswan: ignored (out of standard support)
esm-infra/xenial_strongswan: released (5.3.5-1ubuntu3.8+esm1)
fips/xenial_strongswan: needs-triage
fips-updates/xenial_strongswan: needs-triage
bionic_strongswan: released (5.6.2-1ubuntu2.7)
fips/bionic_strongswan: released (5.6.2-1ubuntu2.7)
fips-updates/bionic_strongswan: released (5.6.2-1ubuntu2.7)
focal_strongswan: released (5.8.2-1ubuntu3.3)
fips/focal_strongswan: released (5.8.2-1ubuntu3.3)
fips-updates/focal_strongswan: released (5.8.2-1ubuntu3.3)
hirsute_strongswan: released (5.9.1-1ubuntu1.2)
impish_strongswan: released (5.9.1-1ubuntu3.1)
jammy_strongswan: released (5.9.1-1ubuntu3.1)
devel_strongswan: released (5.9.1-1ubuntu3.1)