A vulnerability in the eap-mschapv2 plugin related to processing Failure Request packets on the client was discovered in strongSwan that can result in a heap-based buffer overflow and potentially remote code execution. All versions since 4.2.12 are affected.
We are happy to announce the release of strongSwan 6.0.3, which fixes a vulnerability in the eap-mschapv2 plugin, adds a new event to receive alerts via VICI, supports referencing on-device certificates in managed profiles of the Android app, and comes with several other new features and fixes.
We are happy to announce the release of strongSwan 6.0.2, which adds support for per-CPU SAs, AGGFRAG mode, can match identities against regular expressions, switch configs based on EAP-Identities, and comes with several other new features and fixes.
We are happy to announce the release of strongSwan 6.0.1, which adds support for multiple key exchanges to the ha plugin, brings new options for the dhcp and eap-radius plugins, and comes with several other new features and fixes.