EUVD-2015-4166

Malware in sbrugna...

SUSE CVE-2015-4142

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service crash via a crafted frame, which triggers an out-of-bounds read...

Denial Of Service (DoS)

wpasupplicant is vulnerable to denial of service DoS attacks. The vulnerability exists as Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of...

SUSE SLED12 / SLES12 Security Update : wpa_supplicant (SUSE-SU-2016:2305-1)

This update for wpasupplicant fixes the following issues : - CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding. bnc930077 - CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing. bnc930078 - CVE-2015-4143: EAP-pwd missing payload length validation...

Fedora 23 : wpa_supplicant-2.4-6.fc23 (2015-6f16b5e39e)

wpasupplicant-2.4-6.fc23 - Make sure that network filesystems are unmounted when shutting down rh 1214466 - CVE-2015-4142: AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

The vulnerability of the UPnP operating system openSUSE, the Wi-Fi protected access client WPA Supplicant, and the software access point Jouni Malinen Hostapd, which allows a intruder to trigger a service failure.

The vulnerability of the WMM Action UPnP component in the openSUSE operating system, the Wi-Fi Protected Access Point client WPA Supplicant, and the Jouni Malinen-hosted Hostapd software access point is caused by a buffer overflow. Exploiting this vulnerability allows an attacker, operating...

Debian DSA-3397-1 : wpa - security update

Several vulnerabilities have been discovered in wpasupplicant and hostapd. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-4141 Kostya Kortchinsky of the Google Security Team discovered a vulnerability in the WPS UPnP function with HTTP chunked...

Oracle: Security Advisory (ELSA-2015-1439)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

hostapd: denial of service

CVE-2015-4141 denial of service A vulnerability was found in the WPS UPnP function shared by hostapd WPS AP and wpasupplicant WPS external registrar. This may allow a possible denial of service attack through - CVE-2015-4142 denial of service A vulnerability was found in WMM Action frame...

Debian DLA-260-1 : hostapd security update

A vulnerability was found in WMM Action frame processing in a case where hostapd is used to implement AP mode MLME/SME functionality i.e., Host AP driver of a mac80211-based driver on Linux. This vulnerability can be used to perform denial of service attacks by an attacker that is within radio...

[SECURITY] [DLA 260-1] hostapd security update

Package : hostapd Version : 1:0.6.10-2+squeeze2 CVE ID : CVE-2015-4142 A vulnerability was found in WMM Action frame processing in a case where hostapd is used to implement AP mode MLME/SME functionality i.e., Host AP driver of a mac80211-based driver on Linux. This vulnerability can be used to...

DLA-260-1 hostapd - security update

Bulletin has no description...

CVE-2015-4142

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service crash via a crafted frame, which triggers an out-of-bounds read...

Integer overflow

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service crash via a crafted frame, which triggers an out-of-bounds read...

CVE-2015-4142

CVE-2015-4142 involves an integer underflow in the WMM Action frame processing when hostapd/wpa_supplicant run in AP mode (MLME/SME). A crafted frame can trigger an out-of-bounds read, potentially crashing the daemon. Affected products include hostapd and wpa_supplicant (various versions up to 2....

CVE-2015-4142

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service crash via a crafted frame, which triggers an out-of-bounds read...

CVE-2015-4142

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service crash via a crafted frame, which triggers an out-of-bounds read...

Fedora 20 : hostapd-2.4-2.fc20 (2015-8386)

Security update for integer underflow in AP mode WMM Action frame processing. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 21 : hostapd-2.4-2.fc21 (2015-8336)

Security update for integer underflow in AP mode WMM Action frame processing. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 22 : hostapd-2.4-2.fc22 (2015-8303)

Security update for integer underflow in AP mode WMM Action frame processing. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...