{"id":"CVE-2018-10811","details":"strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.","modified":"2026-05-28T04:04:07.417501182Z","published":"2018-06-19T21:29:00.223Z","related":["SUSE-SU-2019:3056-1","SUSE-SU-2019:3266-1","openSUSE-SU-2019:2594-1","openSUSE-SU-2019:2598-1","openSUSE-SU-2024:11411-1"],"database_specific":{"unresolved_ranges":[{"source":"CPE_STRING","cpes":["cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*"],"extracted_events":[{"last_affected":"14.04"},{"last_affected":"16.04"},{"last_affected":"18.04"}],"vendor_product":"canonical:ubuntu_linux"},{"source":"CPE_STRING","cpes":["cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"],"extracted_events":[{"last_affected":"8.0"},{"last_affected":"9.0"}],"vendor_product":"debian:debian_linux"},{"source":"CPE_STRING","cpes":["cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*"],"extracted_events":[{"last_affected":"28"}],"vendor_product":"fedoraproject:fedora"}]},"references":[{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBO6ZQKLB5RY3TV7MXADFTQKXA2LUEIL/"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201811-16"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3771-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2018/dsa-4229"},{"type":"FIX","url":"https://download.strongswan.org/security/CVE-2018-10811/"},{"type":"ARTICLE","url":"https://www.strongswan.org/blog/2018/05/28/strongswan-vulnerability-%28cve-2018-10811%29.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/strongswan/strongswan","events":[{"introduced":"565bfc08c6d8779673f6435dacb701961ddacd1d"},{"fixed":"b2ab0995c11a6074a06e3d8d9a8325dc9e6154a1"}],"database_specific":{"source":"CPE_RANGE","extracted_events":[{"introduced":"5.0.1"},{"fixed":"5.6.3"}],"cpe":"cpe:2.3:a:strongswan:strongswan:*:*:*:*:*:*:*:*"}}],"versions":["5.6.3rc1","5.6.3dr2","5.6.3dr1","5.6.2","5.6.2rc1","5.6.2dr4","5.6.2dr3","5.6.2dr2","5.6.2dr1","5.6.1","5.6.1rc1","5.6.1dr3","5.6.1dr2","5.6.1dr1","5.6.0","5.6.0rc2","5.6.0rc1","5.6.0dr4","5.6.0dr3","5.6.0dr2","5.6.0dr1","5.5.3","5.5.3dr2","5.5.3dr1","5.5.2","5.5.2rc1","5.5.2dr7","5.5.2dr6","5.5.2dr5","5.5.2dr4","5.5.2dr3","5.5.2dr2","5.5.2dr1","5.5.1","5.5.1rc2","5.5.1rc1","5.5.1dr5","5.5.1dr4","5.5.1dr3","5.5.1dr2","5.5.0","5.5.1dr1","5.5.0rc1","5.5.0dr1","5.4.1dr4","5.4.1dr3","5.4.1dr2","5.4.1dr1","5.4.0","5.4.0rc1","5.4.0dr8","5.4.0dr7","5.4.0dr6","5.4.0dr5","5.4.0dr4","5.4.0dr3","5.4.0dr2","5.4.0dr1","5.3.5","5.3.4","5.3.4rc1","5.3.4dr3","5.3.4dr2","5.3.4dr1","5.3.3","5.3.3rc2","5.3.3dr6","5.3.3dr5","5.3.3dr4","5.3.3dr3","5.3.3dr1","5.3.2","5.3.1","5.3.1rc1","5.3.1dr1","5.3.0","5.3.0rc1","5.3.0dr1","5.2.2","5.2.2rc1","5.2.2dr1","5.2.1","5.2.1rc1","5.2.1dr1","5.2.0","5.2.0rc1","5.2.0dr6","5.2.0dr5","5.2.0dr4","5.2.0dr3","5.2.0dr2","5.2.0dr1","5.1.3","5.1.3rc1","5.1.3dr1","5.1.2","5.1.2rc2","5.1.2rc1","5.1.2dr3","5.1.2.dr2","5.1.2dr1","5.1.1","5.1.1rc1","5.1.1dr4","5.1.1dr3","5.1.1dr2","5.1.1dr1","5.1.0","5.1.0rc1","5.1.0dr2","5.1.0dr1","5.0.4","5.0.3","5.0.3rc1","5.0.2","5.0.3dr3","5.0.3dr2","5.0.3dr1","5.0.2rc1","5.0.2dr4","5.0.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10811.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}