Version in base suite: 6.0.1-6+deb13u1 Base version: strongswan_6.0.1-6+deb13u1 Target version: strongswan_6.0.1-6+deb13u2 Base file: /srv/ftp-master.debian.org/ftp/pool/main/s/strongswan/strongswan_6.0.1-6+deb13u1.dsc Target file: /srv/ftp-master.debian.org/policy/pool/main/s/strongswan/strongswan_6.0.1-6+deb13u2.dsc changelog | 6 + gbp.conf | 2 patches/0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch | 40 ++++++++++ patches/series | 1 po/ca.po | 2 po/cs.po | 2 po/da.po | 2 po/de.po | 2 po/es.po | 2 po/eu.po | 2 po/fi.po | 2 po/fr.po | 2 po/gl.po | 2 po/it.po | 2 po/ja.po | 2 po/nb.po | 2 po/nl.po | 2 po/pl.po | 2 po/pt.po | 2 po/pt_BR.po | 2 po/ru.po | 2 po/sv.po | 2 po/templates.pot | 2 po/tr.po | 2 po/vi.po | 2 25 files changed, 69 insertions(+), 22 deletions(-) diff -Nru strongswan-6.0.1/debian/changelog strongswan-6.0.1/debian/changelog --- strongswan-6.0.1/debian/changelog 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/changelog 2025-10-15 10:09:29.000000000 +0000 @@ -1,3 +1,9 @@ +strongswan (6.0.1-6+deb13u2) trixie-security; urgency=medium + + * d/patches: add fix for buffer overflow in EAP-MSCHAPv2 (CVE-2025-62291) + + -- Yves-Alexis Perez Wed, 15 Oct 2025 12:09:29 +0200 + strongswan (6.0.1-6+deb13u1) trixie; urgency=medium * d/patches: add patches to fix OpenSSL 3.5.1 support (Closes: #1109942) diff -Nru strongswan-6.0.1/debian/gbp.conf strongswan-6.0.1/debian/gbp.conf --- strongswan-6.0.1/debian/gbp.conf 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/gbp.conf 2025-10-15 10:09:29.000000000 +0000 @@ -1,4 +1,4 @@ [DEFAULT] pristine-tar = True debian-branch = debian/trixie -upstream-branch = upstream/latest +upstream-branch = upstream/trixie diff -Nru strongswan-6.0.1/debian/patches/0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch strongswan-6.0.1/debian/patches/0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch --- strongswan-6.0.1/debian/patches/0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch 1970-01-01 00:00:00.000000000 +0000 +++ strongswan-6.0.1/debian/patches/0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch 2025-10-15 10:09:29.000000000 +0000 @@ -0,0 +1,40 @@ +From: Tobias Brunner +Date: Thu, 9 Oct 2025 11:33:45 +0200 +Subject: eap-mschapv2: Fix length check for Failure Request packets on the + client + +For message lengths between 6 and 8, subtracting HEADER_LEN (9) causes +`message_len` to become negative, which is then used in calls to malloc() +and memcpy() that both take size_t arguments, causing an integer +underflow. + +For 6 and 7, the huge size requested from malloc() will fail (it exceeds +PTRDIFF_MAX) and the returned NULL pointer will cause a segmentation +fault in memcpy(). + +However, for 8, the allocation is 0, which succeeds. But then the -1 +passed to memcpy() causes a heap-based buffer overflow (and possibly a +segmentation fault when attempting to read/write that much data). +Fortunately, if compiled with -D_FORTIFY_SOURCE=3 (the default on e.g. +Ubuntu), the compiler will use __memcpy_chk(), which prevents that buffer +overflow and causes the daemon to get aborted immediately instead. + +Fixes: f98cdf7a4765 ("adding plugin for EAP-MS-CHAPv2") +Fixes: CVE-2025-62291 +--- + src/libcharon/plugins/eap_mschapv2/eap_mschapv2.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/src/libcharon/plugins/eap_mschapv2/eap_mschapv2.c b/src/libcharon/plugins/eap_mschapv2/eap_mschapv2.c +index 1bb54c8..9ad509a 100644 +--- a/src/libcharon/plugins/eap_mschapv2/eap_mschapv2.c ++++ b/src/libcharon/plugins/eap_mschapv2/eap_mschapv2.c +@@ -974,7 +974,7 @@ static status_t process_peer_failure(private_eap_mschapv2_t *this, + data = in->get_data(in); + eap = (eap_mschapv2_header_t*)data.ptr; + +- if (data.len < 3) /* we want at least an error code: E=e */ ++ if (data.len < HEADER_LEN + 3) /* we want at least an error code: E=e */ + { + DBG1(DBG_IKE, "received invalid EAP-MS-CHAPv2 message: too short"); + return FAILED; diff -Nru strongswan-6.0.1/debian/patches/series strongswan-6.0.1/debian/patches/series --- strongswan-6.0.1/debian/patches/series 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/patches/series 2025-10-15 10:09:29.000000000 +0000 @@ -4,3 +4,4 @@ dont-load-kernel-libipsec-plugin-by-default.patch 0001-openssl-Fix-testing-KDF_PRF-in-the-constructor-with-.patch 0002-openssl-Don-t-allocate-salt-if-PRF-hash-is-unknown.patch +0007-eap-mschapv2-Fix-length-check-for-Failure-Request-pa.patch diff -Nru strongswan-6.0.1/debian/po/ca.po strongswan-6.0.1/debian/po/ca.po --- strongswan-6.0.1/debian/po/ca.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/ca.po 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2025-01-30 07:33+0100\n" "Last-Translator: poc senderi \n" "Language-Team: Catalan \n" diff -Nru strongswan-6.0.1/debian/po/cs.po strongswan-6.0.1/debian/po/cs.po --- strongswan-6.0.1/debian/po/cs.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/cs.po 2025-10-15 10:09:29.000000000 +0000 @@ -13,7 +13,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-28 14:42+0100\n" "Last-Translator: Miroslav Kure \n" "Language-Team: Czech \n" diff -Nru strongswan-6.0.1/debian/po/da.po strongswan-6.0.1/debian/po/da.po --- strongswan-6.0.1/debian/po/da.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/da.po 2025-10-15 10:09:29.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-06 12:42+0000\n" "Last-Translator: Joe Hansen \n" "Language-Team: Danish \n" diff -Nru strongswan-6.0.1/debian/po/de.po strongswan-6.0.1/debian/po/de.po --- strongswan-6.0.1/debian/po/de.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/de.po 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan 4.4.0-1\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-11-02 15:40+0100\n" "Last-Translator: Helge Kreutzmann \n" "Language-Team: German \n" diff -Nru strongswan-6.0.1/debian/po/es.po strongswan-6.0.1/debian/po/es.po --- strongswan-6.0.1/debian/po/es.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/es.po 2025-10-15 10:09:29.000000000 +0000 @@ -31,7 +31,7 @@ msgstr "" "Project-Id-Version: strongswan 4.4.1-5\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-12-17 17:19-0300\n" "Last-Translator: Matías Bellone \n" "Language-Team: Debian l10n Spanish \n" diff -Nru strongswan-6.0.1/debian/po/eu.po strongswan-6.0.1/debian/po/eu.po --- strongswan-6.0.1/debian/po/eu.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/eu.po 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan_4.4.1-5.1_eu\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-15 21:41+0200\n" "Last-Translator: Iñaki Larrañaga Murgoitio \n" "Language-Team: Basque \n" diff -Nru strongswan-6.0.1/debian/po/fi.po strongswan-6.0.1/debian/po/fi.po --- strongswan-6.0.1/debian/po/fi.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/fi.po 2025-10-15 10:09:29.000000000 +0000 @@ -6,7 +6,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2009-05-25 14:49+0100\n" "Last-Translator: Esko Arajärvi \n" "Language-Team: Finnish \n" diff -Nru strongswan-6.0.1/debian/po/fr.po strongswan-6.0.1/debian/po/fr.po --- strongswan-6.0.1/debian/po/fr.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/fr.po 2025-10-15 10:09:29.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2010-06-24 22:17+0200\n" "Last-Translator: Christian Perrier \n" "Language-Team: French \n" diff -Nru strongswan-6.0.1/debian/po/gl.po strongswan-6.0.1/debian/po/gl.po --- strongswan-6.0.1/debian/po/gl.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/gl.po 2025-10-15 10:09:29.000000000 +0000 @@ -6,7 +6,7 @@ msgstr "" "Project-Id-Version: templates_[kI6655]\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2009-05-25 14:50+0100\n" "Last-Translator: marce villarino \n" "Language-Team: Galician \n" diff -Nru strongswan-6.0.1/debian/po/it.po strongswan-6.0.1/debian/po/it.po --- strongswan-6.0.1/debian/po/it.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/it.po 2025-10-15 10:09:29.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-11-09 13:41+0200\n" "Last-Translator: Beatrice Torracca \n" "Language-Team: Italian \n" diff -Nru strongswan-6.0.1/debian/po/ja.po strongswan-6.0.1/debian/po/ja.po --- strongswan-6.0.1/debian/po/ja.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/ja.po 2025-10-15 10:09:29.000000000 +0000 @@ -16,7 +16,7 @@ msgstr "" "Project-Id-Version: strongswan 4.4.1-4\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-02-07 21:28+0900\n" "Last-Translator: Hideki Yamane \n" "Language-Team: Japanese \n" diff -Nru strongswan-6.0.1/debian/po/nb.po strongswan-6.0.1/debian/po/nb.po --- strongswan-6.0.1/debian/po/nb.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/nb.po 2025-10-15 10:09:29.000000000 +0000 @@ -6,7 +6,7 @@ msgstr "" "Project-Id-Version: nb\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-06 17:37+0200\n" "Last-Translator: Bjørn Steensrud \n" "Language-Team: Norwegian Bokmål \n" diff -Nru strongswan-6.0.1/debian/po/nl.po strongswan-6.0.1/debian/po/nl.po --- strongswan-6.0.1/debian/po/nl.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/nl.po 2025-10-15 10:09:29.000000000 +0000 @@ -10,7 +10,7 @@ msgstr "" "Project-Id-Version: strongswan 4.5.0-1\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2014-09-24 18:39+0200\n" "Last-Translator: Frans Spiesschaert \n" "Language-Team: Debian Dutch l10n Team \n" diff -Nru strongswan-6.0.1/debian/po/pl.po strongswan-6.0.1/debian/po/pl.po --- strongswan-6.0.1/debian/po/pl.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/pl.po 2025-10-15 10:09:29.000000000 +0000 @@ -6,7 +6,7 @@ msgstr "" "Project-Id-Version: \n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2012-01-31 15:36+0100\n" "Last-Translator: Michał Kułach \n" "Language-Team: Polish \n" diff -Nru strongswan-6.0.1/debian/po/pt.po strongswan-6.0.1/debian/po/pt.po --- strongswan-6.0.1/debian/po/pt.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/pt.po 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan 5.1.0-3\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-11-18 00:33+0000\n" "Last-Translator: Américo Monteiro \n" "Language-Team: Portuguese \n" diff -Nru strongswan-6.0.1/debian/po/pt_BR.po strongswan-6.0.1/debian/po/pt_BR.po --- strongswan-6.0.1/debian/po/pt_BR.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/pt_BR.po 2025-10-15 10:09:29.000000000 +0000 @@ -9,7 +9,7 @@ msgstr "" "Project-Id-Version: strongswan 5.1.3-4\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2014-06-25 18:13-0300\n" "Last-Translator: Adriano Rafael Gomes \n" "Language-Team: Brazilian Portuguese \n" "Language-Team: Russian \n" diff -Nru strongswan-6.0.1/debian/po/sv.po strongswan-6.0.1/debian/po/sv.po --- strongswan-6.0.1/debian/po/sv.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/sv.po 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan_sv\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-07 09:05+0100\n" "Last-Translator: Martin Bagge / brother \n" "Language-Team: Swedish \n" diff -Nru strongswan-6.0.1/debian/po/templates.pot strongswan-6.0.1/debian/po/templates.pot --- strongswan-6.0.1/debian/po/templates.pot 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/templates.pot 2025-10-15 10:09:29.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" diff -Nru strongswan-6.0.1/debian/po/tr.po strongswan-6.0.1/debian/po/tr.po --- strongswan-6.0.1/debian/po/tr.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/tr.po 2025-10-15 10:09:29.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: strongswan\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2013-10-24 11:17+0200\n" "Last-Translator: Atila KOÇ \n" "Language-Team: Türkçe \n" diff -Nru strongswan-6.0.1/debian/po/vi.po strongswan-6.0.1/debian/po/vi.po --- strongswan-6.0.1/debian/po/vi.po 2025-08-22 07:58:42.000000000 +0000 +++ strongswan-6.0.1/debian/po/vi.po 2025-10-15 10:09:29.000000000 +0000 @@ -6,7 +6,7 @@ msgstr "" "Project-Id-Version: strongswan 4.4.0-1\n" "Report-Msgid-Bugs-To: strongswan@packages.debian.org\n" -"POT-Creation-Date: 2025-08-27 11:32+0200\n" +"POT-Creation-Date: 2025-10-23 07:59+0200\n" "PO-Revision-Date: 2010-10-03 19:22+1030\n" "Last-Translator: Clytie Siddall \n" "Language-Team: Vietnamese \n"