IPFire 2.13 Core 76 Linux-Based Firewall Distribution Features Latest Strongswan Fixes
“It comes with a security fix for the strongswan package which is responsible for IPsec VPN connections. The vulnerability has got the number CVE-2014-2338. It was possible to bypass the authentication and therefore to overtake a VPN connection whilst the original peers are rekeying. IKEv1 connections are not vulnerable, but IKEv2,” reads the official announcement.