Accepted strongswan 5.6.3-1 (source) into unstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 04 Jun 2018 10:23:22 +0200
Source: strongswan
Binary: strongswan libstrongswan libstrongswan-standard-plugins libstrongswan-extra-plugins libcharon-extra-plugins strongswan-starter strongswan-libcharon strongswan-charon strongswan-nm charon-cmd strongswan-pki strongswan-scepclient strongswan-swanctl charon-systemd
Architecture: source
Version: 5.6.3-1
Distribution: unstable
Urgency: medium
Maintainer: strongSwan Maintainers <pkg-swan-devel@lists.alioth.debian.org>
Changed-By: Yves-Alexis Perez <corsac@debian.org>
Description:
charon-cmd - standalone IPsec client
charon-systemd - strongSwan IPsec client, systemd support
libcharon-extra-plugins - strongSwan charon library (extra plugins)
libstrongswan - strongSwan utility and crypto library
libstrongswan-extra-plugins - strongSwan utility and crypto library (extra plugins)
libstrongswan-standard-plugins - strongSwan utility and crypto library (standard plugins)
strongswan - IPsec VPN solution metapackage
strongswan-charon - strongSwan Internet Key Exchange daemon
strongswan-libcharon - strongSwan charon library
strongswan-nm - strongSwan plugin to interact with NetworkManager
strongswan-pki - strongSwan IPsec client, pki command
strongswan-scepclient - strongSwan IPsec client, SCEP client
strongswan-starter - strongSwan daemon starter and configuration file parser
strongswan-swanctl - strongSwan IPsec client, swanctl command
Closes: 896813
Changes:
strongswan (5.6.3-1) unstable; urgency=medium
.
* New upstream version 5.6.2
* update charon-systemd AppArmor profile (closes: #896813)
* New upstream version 5.6.3
- fix a DoS vulnerability in the IKEv2 key derivation if the openssl
plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF
(CVE-2018-10811)
- fix a vulnerability in the stroke plugin, which did not check the
received length before reading a message from the control socket
(CVE-2018-5388)
* d/p/05_charon-nm-Fix-building-list-of-DNS-MDNS-servers-with removed
Checksums-Sha1:
f9375a0ed3786ccdbab6636c38d36cee94e7f546 3187 strongswan_5.6.3-1.dsc
749e8b5ad0c9480c2303bc6caf4c9c6452ce00ed 4961579 strongswan_5.6.3.orig.tar.bz2
8c0a30d82286d6f11c9cf1e38a7f19d3c3a76368 989 strongswan_5.6.3.orig.tar.bz2.asc
d39ff167c6f84104463cb4eb485e24af14dffe17 126656 strongswan_5.6.3-1.debian.tar.xz
ad7a171809902a9a2f29e4ab8c5ef4780f6df75a 16225 strongswan_5.6.3-1_amd64.buildinfo
Checksums-Sha256:
06d94589f06c6f15343adab926268ee11dcfa6d1ce59bad4fc3bdf8baa081ed4 3187 strongswan_5.6.3-1.dsc
c3c7dc8201f40625bba92ffd32eb602a8909210d8b3fac4d214c737ce079bf24 4961579 strongswan_5.6.3.orig.tar.bz2
cc327abac84662056e5d8ab7317f0a685035c6d35b5088258bedc6107dfded19 989 strongswan_5.6.3.orig.tar.bz2.asc
3e59ed4109f27da783db5ca7dd4fd86d51c7d27c1c9a2511bdad80d8150cee8a 126656 strongswan_5.6.3-1.debian.tar.xz
56663524590eb617715311fa460550ab88630063ecae44e7d306582ba3dbc458 16225 strongswan_5.6.3-1_amd64.buildinfo
Files:
2145f749dd2913ad4566a8210e7b72fd 3187 net optional strongswan_5.6.3-1.dsc
a6a28eeb22aa58080a7581771a5b63f9 4961579 net optional strongswan_5.6.3.orig.tar.bz2
f19fe51abd53f44a9acd13fb9140b994 989 net optional strongswan_5.6.3.orig.tar.bz2.asc
5ef942625a309631b61a7e098f7ffd8a 126656 net optional strongswan_5.6.3-1.debian.tar.xz
7d02534a9dc9e118e0703e79d3aff0fe 16225 net optional strongswan_5.6.3-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCgAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAlsU+hoACgkQ3rYcyPpX
RFsAdgf7BASzqy/DFKXkf73hNYTRdXDmK3RYMd8fhaztVxPknSUhwOad8jt1CNX5
ZRTHAHJwuFUz2BrPjIwSOMeq9HT56OXSoCxo2Y0+g2J2mFTTnlWeV1JaqLSW8Rb9
rzP4Ca66NVtRlpXj8lUtLzYR9U0XvFHC3bTKL5eW/Urme7qt6jV24fNETsOK0eS8
VdRJOtL3T5EzKMwo5B3VqkuNZ6lYALVyHYR3oJsDv+tYRHeNDG+MFEUHlnOM81/8
PccnKflut3n0V3oDRXHWb3VqNr4zkNCjp86XHzQeK4pWGIzyT7/tOfF28bFDkIGD
jmyG0xOYXyEaP3cWcs8Su8IMY5ozjg==
=yRLo
-----END PGP SIGNATURE-----