libstrongswan-standard-plugins - strongSwan utility and crypto library (standard plugins)

Property Value
Distribution Debian 8 (Jessie)
Repository Debian Main i386
Package name libstrongswan-standard-plugins
Package version 5.2.1
Package release 6+deb8u6
Package architecture i386
Package type deb
Installed size 252 B
Download size 108.09 KB
Official Mirror
The strongSwan VPN suite uses the native IPsec stack in the standard
Linux kernel. It supports both the IKEv1 and IKEv2 protocols.
This package provides some common plugins for the strongSwan utility and
cryptograhic library.
Included plugins are:
- agent (RSA/ECDSA private key backend connecting to SSH-Agent)
- gcm (GCM cipher mode wrapper)
- openssl (Crypto backend based on OpenSSL, provides


Package Version Architecture Repository
libstrongswan-standard-plugins_5.2.1-6+deb8u6_amd64.deb 5.2.1 amd64 Debian Main
libstrongswan-standard-plugins - - -


Name Value
libc6 >= 2.8
libssl1.0.0 >= 1.0.0
libstrongswan = 5.2.1-6+deb8u6


Name Value
libstrongswan <= 5.1.1-1
strongswan-ike <= 5.1.1-1


Type URL
Binary Package libstrongswan-standard-plugins_5.2.1-6+deb8u6_i386.deb
Source Package strongswan

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install libstrongswan-standard-plugins deb package:
    # sudo apt-get install libstrongswan-standard-plugins




2018-06-14 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u6) jessie-security; urgency=medium
* d/p/CVE-2018-10811.patch added, fix missing initialization of a variable
in IKEv2 key derivation (CVE-2018-10811)
* d/p/CVE-2018-5388 added, fix insufficient validation in the stroke plugin
2017-08-03 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u5) jessie-security; urgency=medium
* debian/patches:
- CVE-2017-11185 added, fix insufficient validation in gmp plugin
2017-05-30 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u4) jessie-security; urgency=medium
* debian/rules:
- revert disabling of vectors test
* debian/patches:
- 0001-openssl-Don-t-pre-initialize-OpenSSL-HMAC-with-an-em added,
backported from upstream, fix HMAC initialization with recent OpenSSL.
2017-05-29 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u3) jessie-security; urgency=medium
* debian/patches:
- CVE-2017-9022_insufficient_input_validation_gmp_plugin added, fix
insufficient input validation in gmp plugin which could lead to denial of
service (CVE-2017-9022).
- CVE-2017-9023_incorrect_handling_of_choice_types_in_asn1_parser added,
fix incorrect handling of CHOICE types in ASN.1 parser and x509 plugin
whch could lead to an infinite loop and a denial of service
* debian/rules:
- disable the vectors test which is failing right now for unknown reason
(maybe due to an OpenSSL regression)
2015-11-16 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u2) jessie-security; urgency=medium
* debian/patches:
- CVE-2015-8023_eap_mschapv2_state added, fix authentication bypass when
using EAP MSCHAPv2.
2015-06-04 - Yves-Alexis Perez <>
strongswan (5.2.1-6+deb8u1) jessie-security; urgency=high
* debian/patches:
- CVE-2015-4171_enforce_remote_auth added, fix potential leak of
authentication credential to rogue server when using PSK or EAP. This is
2015-04-04 - Romain Francoise <>
strongswan (5.2.1-6) unstable; urgency=medium
* Ship /lib/systemd/system/ipsec.service as a symlink to
strongswan.service in strongswan-starter instead of using Alias= in
the service file. This makes the ipsec name available to invoke-rc.d
before the service gets actually enabled, which avoids some confusion
(closes: #781209).
2015-01-05 - Yves-Alexis Perez <>
strongswan (5.2.1-5) unstable; urgency=high
* debian/patches:
- debian/patches/CVE-2014-9221_modp_custom added, fix unauthenticated
denial of service in IKEv2 when using custom MODP value.
2014-10-24 - Romain Francoise <>
strongswan (5.2.1-4) unstable; urgency=medium
* Give up on trying to run the test suite on !amd64, it now times out on
both i386 and s390x, our chosen "fast" archs.
2014-10-23 - Romain Francoise <>
strongswan (5.2.1-3) unstable; urgency=medium
* Disable libtls tests again, they are still too intensive for the buildd

See Also

Package Description
libstrongswan_5.2.1-6+deb8u6_i386.deb strongSwan utility and crypto library
libstrophe-dev_0.8.6-1_i386.deb Library for writing XMPP clients - development files
libstrophe0_0.8.6-1_i386.deb Library for writing XMPP clients - shared library
libstruct-compare-perl_1.0.1-3_all.deb Perl module providing recursive diff for perl structures
libstruct-dumb-perl_0.03-1_all.deb module to create simple lightweight record-like structures
libstxxl-dev_1.4.0-3_i386.deb Development libraries for STXXL
libstxxl-doc_1.4.0-3_all.deb Documentation for STXXL
libstxxl1-bin_1.4.0-3_i386.deb STXXL File creation and benchmark tool
libstxxl1_1.4.0-3_i386.deb C++ Standard Template Library for extra large datasets
libstylebook-java_1.0~b3~svn20061109-6_all.deb XML application for authoring web site content
libstyx2_2.0.1-1_i386.deb runtime libraries for styx
libsub-current-perl_0.02-2+b1_i386.deb Perl module to determine the executing subroutine
libsub-delete-perl_1.00002-1_all.deb Perl module to delete subroutines
libsub-exporter-formethods-perl_0.100051-1_all.deb Sub::Exporter extension for handling methods
libsub-exporter-globexporter-perl_0.003-1_all.deb module for exporting shared globs