Debian Linux Security Advisory 5056-1 - Zhuowei Zhang discovered a bug in the EAP authentication client code of strongSwan, an IKE/IPsec suite, that may allow to bypass the client and in some scenarios even the server authentication, or could lead to a denial-of-service attack.
3f01304d6e75047f0ba8731c0afaaf92022fb1926f6d750bfd56f791a114d336