-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 09 Apr 2026 09:36:31 +0200
Source: strongswan
Architecture: source
Version: 6.0.1-6+deb13u5
Distribution: trixie-security
Urgency: medium
Maintainer: strongSwan Maintainers <pkg-swan-devel@lists.alioth.debian.org>
Changed-By: Yves-Alexis Perez <corsac@debian.org>
Changes:
 strongswan (6.0.1-6+deb13u5) trixie-security; urgency=medium
 .
   * d/patches: add fix for integer underflow in libsimaka when handling
     EAP-SIM/AKA attributes (CVE-2026-35330)
   * d/patches: add fix for integer underflow in libradius when handling RADIUS
     attributes (CVE-2026-35333)
   * d/patches: add fix for NULL-pointer dereference in libtls when handling
     ECDH public values (CVE-2026-35332)
   * d/patches: add fix for infinite loop in libtls when handling supported
     versions TLS extension (CVE-2026-35328)
   * d/patches: add fix for NULL-pointer dereference in libstrongswan (pkcs5)
     and the pkcs7 plugin when processing padding in PKCS#7 (CVE-2026-35329)
   * d/patches: add fix for acceptation of authentication certificates
     violating name constraints (CVE-2026-35331)
   * d/patches: add fix for possible NULL-pointer dereference in gmp plugin for
     RSA decryption (CVE-2026-35334)
Checksums-Sha1:
 88aa028a6d4cb9f69d061f9cedcc5b4b47bf6b5e 3211 strongswan_6.0.1-6+deb13u5.dsc
 541e626c53b33698e0002caef3c0d6cdd3612c65 141880 strongswan_6.0.1-6+deb13u5.debian.tar.xz
 bb8c9691d0e4d0543ecc6511af7f429f67b04220 18997 strongswan_6.0.1-6+deb13u5_amd64.buildinfo
Checksums-Sha256:
 51e8d226333ace7e20911e414c39a5d6e9b7ea3cc697e1f9ae25a0dfcf33d213 3211 strongswan_6.0.1-6+deb13u5.dsc
 17f14bd6f5144008342cfdf392c268f41f748bc66a3385bbdfde7ca093c736f3 141880 strongswan_6.0.1-6+deb13u5.debian.tar.xz
 cd7992cac5dc3e72af3acf3a50ec0e9d0ec3a07258b8ed5500aa6afb8d290dd7 18997 strongswan_6.0.1-6+deb13u5_amd64.buildinfo
Files:
 48bee26ae82c513c1e5fb26cc5d82279 3211 net optional strongswan_6.0.1-6+deb13u5.dsc
 b650ba6be33d6724df14f33658a6bb5f 141880 net optional strongswan_6.0.1-6+deb13u5.debian.tar.xz
 9acd44434d4f427142d767ed4d9a957f 18997 net optional strongswan_6.0.1-6+deb13u5_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAmnXV/EACgkQ3rYcyPpX
RFtpfAgAiVfA7CVi36UAsPZWRn3x5Ydyj9X+3N1Ya5XAcsklg9m5K5tyBkrFQ0Hg
+TwjejBRoZpHzdKGc3nQ4XxZiW/YuCXQ3bcJhsPvm/9HPluCffPKSa1TomCIMTE/
nnFSZa5/FpffpFS6pzySItl7J5ovt1t+M580z+pK3r1trEjC/uhjsBM8mKDKgnNv
U4PLTRmJesho4xeMTJ/suwmt1lIrgye0UwewZmKb/dDkckLiqrr7he1RlSG5/1w4
CpuWuDd8SVLhVQ5jlVUd/xQZAm7DpqWLu6eQ0cJXefe37l/7slJ5b4DfSmVXqMlN
x82hy45pt2+5jZb4oZjthHmuwzUimw==
=BFek
-----END PGP SIGNATURE-----