Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted strongswan 6.0.6-1 (source) into unstable
Date: Sun, 26 Apr 2026 09:21:28 +0000
Signed by: Yves-Alexis Perez <corsac@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 26 Apr 2026 10:59:10 +0200
Source: strongswan
Architecture: source
Version: 6.0.6-1
Distribution: unstable
Urgency: medium
Maintainer: strongSwan Maintainers <pkg-swan-devel@lists.alioth.debian.org>
Changed-By: Yves-Alexis Perez <corsac@debian.org>
Closes: 1134897
Changes:
 strongswan (6.0.6-1) unstable; urgency=medium
 .
   * New upstream version 6.0.6
   * Includes multiple security fixes (closes: #1134897):
     - fix for integer underflow in libsimaka when handling EAP-SIM/AKA
     attributes (CVE-2026-35330)
     - fix for integer underflow in libradius when handling RADIUS attributes
     (CVE-2026-35333)
     - fix for NULL-pointer dereference in libtls when handling ECDH public
     values (CVE-2026-35332)
     - fix for infinite loop in libtls when handling supported versions TLS
     extension (CVE-2026-35328)
     - fix for NULL-pointer dereference in libstrongswan (pkcs5) and the pkcs7
     plugin when processing padding in PKCS#7 (CVE-2026-35329)
     - fix for acceptation of authentication certificates violating name
     constraints (CVE-2026-35331)
     - fix for possible NULL-pointer dereference in gmp plugin for RSA
     decryption (CVE-2026-35334)
Checksums-Sha1:
 4c3ce52d281604496e40ae82f9f652f0573d50ec 3179 strongswan_6.0.6-1.dsc
 32845cbaa5b34768a443274832a7cdfd8f701081 4936540 strongswan_6.0.6.orig.tar.bz2
 e86b60afcd69667b3a50c01f6d1b1e74856147d0 659 strongswan_6.0.6.orig.tar.bz2.asc
 f9c979a5c4dde71abf36d5f1a440fc94ef4fb71a 128856 strongswan_6.0.6-1.debian.tar.xz
 d845a7e87be9525452545bd00e601bce5e3e3341 18226 strongswan_6.0.6-1_amd64.buildinfo
Checksums-Sha256:
 e8b2caa661d729136c2e9ed17e453ae6c5d90ae8d4bbed32408ac0f97c07617a 3179 strongswan_6.0.6-1.dsc
 07df7cedae56a7f3bb07e66d21a1f9f87e961db70e99184e11d3819413e4f87c 4936540 strongswan_6.0.6.orig.tar.bz2
 b9cc825551547263f59d5021523da48dff4224e587c821b27dd251f220a7f3b7 659 strongswan_6.0.6.orig.tar.bz2.asc
 63cf18e049adb10cc3d477827ba2ed1d593903321fb2ca97cd2aa482045120ec 128856 strongswan_6.0.6-1.debian.tar.xz
 e425758e0ac7322f977b339ef25b4cf8403b7b701e5e641b42d5f1bee4cd995a 18226 strongswan_6.0.6-1_amd64.buildinfo
Files:
 f3e0db7ff0501fab1999891f8c687c2a 3179 net optional strongswan_6.0.6-1.dsc
 9c3ad7220a08ec58dc1a367f942c9be4 4936540 net optional strongswan_6.0.6.orig.tar.bz2
 07b7e16e983e5638783d166da1f160b0 659 net optional strongswan_6.0.6.orig.tar.bz2.asc
 caf1ee7fd6e41eb58b0520905f690f11 128856 net optional strongswan_6.0.6-1.debian.tar.xz
 7620f754f8a03f42584e26ea87b00831 18226 net optional strongswan_6.0.6-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAmnt1nUACgkQ3rYcyPpX
RFtjrwf/Z5Ju+0j6CLVUEL/ZbMZX3BzWKn5yGljZChhJyBn23C+VpqFbUgvzb9hT
0zpsimiCB5hqN57r1NIck/UNL97tdXvscrKS7TX4KhlvI+LJqm/1ojPnZvBFTs6n
MmQfRDNPy1z3GFn6IIaAmUGqqGlrbxhe4QI7H1AXeT7hK+JMryCHT7Yl7pc6gf9f
efmqwLeNtbRpLtYmtysUj6z8Pz6vi3LRqLmUbca2sKvnn980qkJF2rg2BzsLw3Ym
2FaSJ9iOqmQTeSP18piwmV8b24MwwYXLZ63xTetMTBkiRhUfKpXjvRU7h2EYJJsJ
bAgvww7zJVEkT3FfF195xuwUpq5D3Q==
=C9xa
-----END PGP SIGNATURE-----
News for package strongswan
