From 8622a74292191af784ebaa86b134eaa57a0552c6 Mon Sep 17 00:00:00 2001
From: Tobias Brunner <tobias@strongswan.org>
Date: Fri, 26 May 2017 18:05:48 +0200
Subject: [PATCH] NEWS: Add info about CVE-2017-9022/23

---
 NEWS | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/NEWS b/NEWS
index a049ab607..98aefe7ce 100644
--- a/NEWS
+++ b/NEWS
@@ -1,6 +1,18 @@
 strongswan-5.5.3
 ----------------
 
+- Fixed a DoS vulnerability in the gmp plugin that was caused by insufficient
+  input validation when verifying RSA signatures.  More specifically,
+  mpz_powm_sec() has two requirements regarding the passed exponent and modulus
+  that the plugin did not enforce, if these are not met the calculation will
+  result in a floating point exception that crashes the whole process.
+  This vulnerability has been registered as CVE-2017-9022.
+
+- Fixed a DoS vulnerability in the x509 plugin that was caused because the ASN.1
+  parser didn't handle ASN.1 CHOICE types properly, which could result in an
+  infinite loop when parsing X.509 extensions that use such types.
+  This vulnerability has been registered as CVE-2017-9023.
+
 - The behavior during IKEv2 CHILD_SA rekeying has been changed in order to avoid
   traffic loss. The responder now only installs the new inbound SA and delays
   installing the outbound SA until it receives the DELETE for the replaced