Vulnerability & Exploit Database

Displaying all 4 entries

Results for: CVE-2018-16151 Back to search

Gentoo Linux: CVE-2018-16151: strongSwan: Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: September 26, 2018

In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.param...

Alpine Linux: CVE-2018-16151: strongswan Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: September 26, 2018

In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.param...

Ubuntu: USN-3771-1 (CVE-2018-16151): strongSwan vulnerabilities Vulnerability

  • Severity: 5
  • Published: September 24, 2018

In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.param...

Debian: CVE-2018-16151: strongswan -- security update Vulnerability

  • Severity: 5
  • Published: September 24, 2018

In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.param...