37 matches found
MiracleLinux 8 : wpa_supplicant-2.9-5.el8 (AXSA:2021-1816:03)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1816:03 advisory. wpasupplicant: P2P group information processing vulnerability CVE-2021-0326 Tenable has extracted the preceding description block directly from the...
RHEL 6 : wpa_supplicant (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wpasupplicant: P2P group information processing vulnerability CVE-2021-0326 - wpasupplicant: EAP-pwd...
Rocky Linux 8 : wpa_supplicant (RLSA-2021:1686)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:1686 advisory. - In p2pcopyclientinfo of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target...
Ubuntu: Security Advisory (USN-4734-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:1853-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL MAIN 6.02 : wpa_supplicant Vulnerability (NS-SA-2022-0062)
The remote NewStart CGSL host, running version MAIN 6.02, has wpasupplicant packages installed that are affected by a vulnerability: - In p2pcopyclientinfo of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target devic...
AlmaLinux 8 : wpa_supplicant (ALSA-2021:1686)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2021:1686 advisory. - In p2pcopyclientinfo of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target devi...
Mageia: Security Advisory (MGASA-2021-0075)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] wpa_supplicant
New wpasupplicant packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/wpasupplicant-2.9-i586-1slack14.2.txz: Upgraded. This update fixes the following security issues: AP mode PMF...
EulerOS Virtualization for ARM 64 3.0.6.0 : wpa_supplicant (EulerOS-SA-2021-2009)
According to the versions of the wpasupplicant package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in how p2p/p2ppd.c in wpasupplicant before 2.10 processes P2P Wi-Fi Direct...
Medium: wpa_supplicant
Issue Overview: In p2pcopyclientinfo of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed. User interaction is not needed f...
Amazon Linux 2 : wpa_supplicant (ALAS-2021-1648)
The version of wpasupplicant installed on the remote host is prior to 2.6-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1648 advisory. In p2pcopyclientinfo of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remot...
Oracle Linux 8 : wpa_supplicant (ELSA-2021-1686)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-1686 advisory. - P2P: Fix a corner case in peer addition based on PD Request CVE-2021-27803 - Fix buffer overflow when processing P2P group information CVE-2021-0326 Tenable h...
CentOS 8 : wpa_supplicant (CESA-2021:1686)
The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2021:1686 advisory. - wpasupplicant: P2P group information processing vulnerability CVE-2021-0326 Note that Nessus has not tested for this issue but has instead relied only on the...
Huawei EulerOS: Security Advisory for wpa_supplicant (EulerOS-SA-2021-1892)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Moderate: Red Hat Security Advisory: wpa_supplicant security, bug fix, and enhancement update
An update for wpasupplicant is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Moderate: wpa_supplicant security, bug fix, and enhancement update
The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...
RLSA-2021:1686 Moderate: wpa_supplicant security, bug fix, and enhancement update
The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...
Debian DSA-4898-1 : wpa - security update
Several vulnerabilities have been discovered in wpasupplicant and hostapd. - CVE-2020-12695 It was discovered that hostapd does not properly handle UPnP subscribe messages under certain conditions, allowing an attacker to cause a denial of service. - CVE-2021-0326 It was discovered that...
[SECURITY] [DSA 4898-1] wpa security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4898-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 22, 2021 https://www.debian.org/security/faq -...