CVE-2017-11185 (https://nvd.nist.gov/vuln/detail/CVE-2017-11185): The gmp plugin in strongSwan before 5.6.0 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted RSA signature. References: https://www.strongswan.org/blog/2017/08/14/strongswan-vulnerability-%28cve-2017-11185%29.html Patch: https://download.strongswan.org/security/CVE-2017-11185/ @ Maintainer(s): Please provide either a patched ebuild or newer version. Please state if ready for stabilization after.
Ebuild for 5.6.0 has been committed
@ Maintainer(s): Please state when the ebuild is ready for stabilization.
@arches, please stabilize.
amd64 stable
x86 stable
arm stable
ppc stable
GLSA Vote: No!
Cleanup via https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=75954cf504602db95aafcb1e80fe1e01b1f3ec22 Repository is clean, all done.