-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 09 Apr 2026 09:36:31 +0200
Source: strongswan
Binary: strongswan
Architecture: all
Version: 6.0.1-6+deb13u5
Distribution: trixie-security
Urgency: medium
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Yves-Alexis Perez <corsac@debian.org>
Description:
 strongswan - IPsec VPN solution metapackage
Changes:
 strongswan (6.0.1-6+deb13u5) trixie-security; urgency=medium
 .
   * d/patches: add fix for integer underflow in libsimaka when handling
     EAP-SIM/AKA attributes (CVE-2026-35330)
   * d/patches: add fix for integer underflow in libradius when handling RADIUS
     attributes (CVE-2026-35333)
   * d/patches: add fix for NULL-pointer dereference in libtls when handling
     ECDH public values (CVE-2026-35332)
   * d/patches: add fix for infinite loop in libtls when handling supported
     versions TLS extension (CVE-2026-35328)
   * d/patches: add fix for NULL-pointer dereference in libstrongswan (pkcs5)
     and the pkcs7 plugin when processing padding in PKCS#7 (CVE-2026-35329)
   * d/patches: add fix for acceptation of authentication certificates
     violating name constraints (CVE-2026-35331)
   * d/patches: add fix for possible NULL-pointer dereference in gmp plugin for
     RSA decryption (CVE-2026-35334)
Checksums-Sha1:
 63ba6db93984e70f3f09791250cc5c6e66cf011d 10441 strongswan_6.0.1-6+deb13u5_all-buildd.buildinfo
 720969edeb55a8a70b1c8a6ad0d140861f8b783f 95088 strongswan_6.0.1-6+deb13u5_all.deb
Checksums-Sha256:
 cffcfa1ea1aa0d8c5713269120cf12e9ecfcf24530431883d9666309a4c3142d 10441 strongswan_6.0.1-6+deb13u5_all-buildd.buildinfo
 f2243ed8c55c9212c6bbcfc53bc5cceedcfc83d7173ac9096c15ddb8f61fca90 95088 strongswan_6.0.1-6+deb13u5_all.deb
Files:
 7889cea1928088e8da6e8f92c334d978 10441 net optional strongswan_6.0.1-6+deb13u5_all-buildd.buildinfo
 011e8fd5e3943f41b7aa695ec3dc2a8b 95088 net optional strongswan_6.0.1-6+deb13u5_all.deb

-----BEGIN PGP SIGNATURE-----
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=qcOh
-----END PGP SIGNATURE-----