We are happy to announce the release of strongSwan 5.9.5, which fixes a vulnerability in the EAP client, supports TPM 2.0 secure sessions, brings basic OpenSSL 3.0 support and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.4, which fixes two denial-of-service vulnerabilities and comes with several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.3, which supports IKE encryption via TKM, adds more algorithms to the wolfssl plugin and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.2, which supports remote attestation of the complete boot phase, adds experimental support for TLS 1.3 and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.1, which supports TPM 2.0 BIOS/EFI measurements and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.9.0, which prefers AES-GCM for ESP, comes with several updates for the NetworkManager plugin/backend and the VICI plugin, and brings several other new features and fixes.

strongSwan 5.8.4 fixes two regressions in last week's 5.8.3 release, one affecting IKEv1 Quick Mode the other OpenSSL's SHAKE128/256 XOFs.

We are happy to announce the release of strongSwan 5.8.3, which comes with several updates for the NetworkManager plugin/backend, reallocates reqids, uses throw type routes for passthrough policies on Linux, and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.8.2, which adds support for identity-based CA constraints, can send intermediate CA certificates in hash-and-URL encoding and brings several other new features and fixes.

We are happy to announce the release of strongSwan 5.8.1, which is mainly a maintenance release but also supports an optional less strict matching of RDNs in DNs of X.509 certificates.