What about strongSwan Vulnerability (CVE-2023-41913) ?

Question

Hello, 
 I had a look into our XG firewall and saw this: 
 XG310_WP02_SFOS 19.5.3 MR-3-Build652 HA-Primary# /libexec/ipsec/charon --version Linux strongSwan 5.5.3 
 Are there any mitigation available or required ? Or is a fix being worked on ? 
 For reference, here&rsquo;s the announcement: www.strongswan.org/.../strongswan-vulnerability-(cve-2023-41913).html 
 Thanks in advance, 
 -- 
 Francis

Giridhar Katti · Accepted Answer

SFOS ships Strongswan version 5.5.3(as v20.0). CVE-2023-41913 affects the Charon TKM(Traffic Keying Module), which we dont enable while compiling Strongswan in SFOS. So we are Not affected.

Vivek Jagad · Answer

Hello Francis Gudin , Thank you for reaching out to the community, SFOS is not affected.

What about strongSwan Vulnerability (CVE-2023-41913) ?

Top Replies