14 matches found
Fedora 40 : iwd (2024-3fa713f2e0)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-3fa713f2e0 advisory. iwd 2.16: Fix issue with uninitialized variable and DPP encrypt. Fix issue with Access Point mode and ATTRMAC validation. Fix issue with Access Poin...
Fedora 40 : iwd / libell (2024-58c59bfa4c)
The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-58c59bfa4c advisory. iwd 2.15: Fix issue with notice events for connection timeouts. Fix issue with reason code and deauthenticate event. Fix issue with handling basename...
Fedora: Security Advisory (FEDORA-2024-4ef5edfb2a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for iwd (FEDORA-2024-fdce971b84)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 39 : iwd / libell (2024-fdce971b84)
The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-fdce971b84 advisory. iwd 2.15: Fix issue with notice events for connection timeouts. Fix issue with reason code and deauthenticate event. Fix issue with handling basename...
[SECURITY] [DSA 5631-1] iwd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5631-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 25, 2024 https://www.debian.org/security/faq -...
AZL-44235 CVE-2023-52161 affecting package iwd 1.22-2
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
CVE-2023-52161
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
CVE-2023-52161
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
[SECURITY] [DLA 3738-1] iwd security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3738-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 22, 2024 https://wiki.debian.org/LTS -...
CVE-2023-52161
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
CVE-2023-52161
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
CVE-2023-52161
The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...
CVE-2023-52161
CVE-2023-52161 affects iNet Wireless Daemon (IWD) via the Access Point path in eapol_auth_key_handle (eapol.c); vulnerable in IWD versions before 2.14. An attacker can complete the EAPOL handshake by skipping Msg2/Msg4 and sending Msg4/4 with an all-zero key to gain unauthorized access to a prote...