PublicDateAtUSN: 2017-05-30 12:00:00 UTC
Candidate: CVE-2017-9023
CRD: 2017-05-30 12:00:00 UTC
PublicDate: 2017-06-08 16:29:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9023
 https://ubuntu.com/security/notices/USN-3301-1
Description:
 The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types
 when the x509 plugin is enabled, which allows remote attackers to cause a
 denial of service (infinite loop) via a crafted certificate.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]

Patches_strongswan:
upstream_strongswan: needs-triage
precise/esm_strongswan: DNE
trusty_strongswan: released (5.1.2-0ubuntu2.6)
trusty/esm_strongswan: released (5.1.2-0ubuntu2.6)
vivid/stable-phone-overlay_strongswan: DNE
vivid/ubuntu-core_strongswan: DNE
xenial_strongswan: released (5.3.5-1ubuntu3.3)
esm-infra/xenial_strongswan: released (5.3.5-1ubuntu3.3)
yakkety_strongswan: released (5.3.5-1ubuntu4.3)
zesty_strongswan: released (5.5.1-1ubuntu3.1)
devel_strongswan: released (5.5.1-4ubuntu1)