Blog

Release and vulnerability announcements for strongSwan

We are happy to announce the release of strongSwan 5.9.7, which delays the IKEv2 key derivation, changes inbound message processing, fixes DHCP request retransmission and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.6, which modularizes the IKEv2 key derivation, supports labeled IPsec with IKEv2, improves DoS protection and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.5, which fixes a vulnerability in the EAP client, supports TPM 2.0 secure sessions, brings basic OpenSSL 3.0 support and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.4, which fixes two denial-of-service vulnerabilities and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.3, which supports IKE encryption via TKM, adds more algorithms to the wolfssl plugin and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.2, which supports remote attestation of the complete boot phase, adds experimental support for TLS 1.3 and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.1, which supports TPM 2.0 BIOS/EFI measurements and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.0, which prefers AES-GCM for ESP, comes with several updates for the NetworkManager plugin/backend and the VICI plugin, and brings several other new features and fixes.