PublicDateAtUSN: 2014-12-19 12:00:00 UTC
Candidate: CVE-2014-9221
CRD: 2014-12-19 12:00:00 UTC
PublicDate: 2015-01-07 19:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9221
 https://ubuntu.com/security/notices/USN-2450-1
Description:
 strongSwan 4.5.x through 5.2.x before 5.2.1 allows remote attackers to
 cause a denial of service (invalid pointer dereference) via a crafted IKEv2
 Key Exchange (KE) message with Diffie-Hellman (DH) group 1025.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Mike Daskalakis
Assigned-to: 
CVSS: 

Patches_strongswan:
upstream_strongswan: released (5.2.2)
lucid_strongswan: ignored (reached end-of-life)
precise_strongswan: ignored (reached end-of-life)
precise/esm_strongswan: DNE (precise was needed)
trusty_strongswan: released (5.1.2-0ubuntu2.2)
trusty/esm_strongswan: released (5.1.2-0ubuntu2.2)
utopic_strongswan: released (5.1.2-0ubuntu3.2)
vivid_strongswan: released (5.1.2-0ubuntu4)
vivid/stable-phone-overlay_strongswan: DNE
vivid/ubuntu-core_strongswan: DNE
wily_strongswan: released (5.1.2-0ubuntu4)
xenial_strongswan: released (5.1.2-0ubuntu4)
esm-infra/xenial_strongswan: released (5.1.2-0ubuntu4)
yakkety_strongswan: released (5.1.2-0ubuntu4)
zesty_strongswan: released (5.1.2-0ubuntu4)
devel_strongswan: released (5.1.2-0ubuntu4)