NEWS: Add info about CVE-2023-41913

author Tobias Brunner <tobias@strongswan.org>

Wed, 15 Nov 2023 13:23:56 +0000 (14:23 +0100)

committer Tobias Brunner <tobias@strongswan.org>

Fri, 17 Nov 2023 16:24:35 +0000 (17:24 +0100)
author Tobias Brunner <tobias@strongswan.org>
Wed, 15 Nov 2023 13:23:56 +0000 (14:23 +0100)
committer Tobias Brunner <tobias@strongswan.org>
Fri, 17 Nov 2023 16:24:35 +0000 (17:24 +0100)
diff --git a/NEWS b/NEWS

index c75bf1f140ba1697ed03f72892f374df10340b68..6c50f1fcbd13a94beb3af6ff352749cfdf76db68 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -1,6 +1,10 @@
  strongswan-5.9.12
  -----------------
  
+- Fixed a vulnerability in charon-tkm related to processing DH public values
+  that can lead to a buffer overflow and potentially remote code execution.
+  This vulnerability has been registered as CVE-2023-41913.
+
  - The new `pki --ocsp` command produces OCSP responses based on certificate
    status information provided by plugins.
author	Tobias Brunner <tobias@strongswan.org>
	Wed, 15 Nov 2023 13:23:56 +0000 (14:23 +0100)
committer	Tobias Brunner <tobias@strongswan.org>
	Fri, 17 Nov 2023 16:24:35 +0000 (17:24 +0100)