Security Advisory

CVE-2021-41991

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-18 13:44:25
Last updated 2024-08-04 03:22:25
Assigner mitre
State PUBLISHED

Description

The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less-often-used cache entry by means of a random number generator, but this is not done correctly. Remote code execution might be a slight possibility.