HCE1-SA-2023-0070 Important HCE 1.1 Security Fix(es): In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket. (CVE-2018-5388) The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows remote attackers to cause a denial of service (infinite loop) via a crafted certificate. (CVE-2017-9023) HCE 1.1 strongimcv-5.2.0-5.hce1c.x86_64.rpm