Two bugs were recently discovered in strongswan's gmp plugin (see additional links). Beside 5.7.1 release, developers provide patches for older versions. Current ebuild compiles fine after the version change. Reproducible: Always Actual Results: n/a 1. https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html 2. https://www.strongswan.org/blog/2018/10/01/strongswan-vulnerability-(cve-2018-17540).html
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=cd0b22894f6e7e2efaee62316991816f2a459040 commit cd0b22894f6e7e2efaee62316991816f2a459040 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2018-10-17 10:03:47 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2018-10-17 10:05:09 +0000 net-vpn/strongswan: bump to v5.7.1 Closes: https://bugs.gentoo.org/667696 Closes: https://bugs.gentoo.org/666014 Package-Manager: Portage-2.3.51, Repoman-2.3.11 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> net-vpn/strongswan/Manifest | 1 + net-vpn/strongswan/strongswan-5.7.1.ebuild | 303 +++++++++++++++++++++++++++++ 2 files changed, 304 insertions(+)
