764 matches found
Fedora 22 : hostapd-2.4-3.fc22 (2015-11374)
apply fix for NDEF record payload length checking Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for hostapd FEDORA-2015-11441
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 22 Update: hostapd-2.4-3.fc22
hostapd is a user space daemon for access point and authentication servers. It implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP Authenticators and RADIUS authentication server. hostapd is designed to be a "daemon" program that runs in the back-ground a nd acts as the backe...
Fedora Update for hostapd FEDORA-2015-8303
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-260-1 : hostapd security update
A vulnerability was found in WMM Action frame processing in a case where hostapd is used to implement AP mode MLME/SME functionality i.e., Host AP driver of a mac80211-based driver on Linux. This vulnerability can be used to perform denial of service attacks by an attacker that is within radio...
[SECURITY] [DLA 260-1] hostapd security update
Package : hostapd Version : 1:0.6.10-2+squeeze2 CVE ID : CVE-2015-4142 A vulnerability was found in WMM Action frame processing in a case where hostapd is used to implement AP mode MLME/SME functionality i.e., Host AP driver of a mac80211-based driver on Linux. This vulnerability can be used to...
DLA-260-1 hostapd - security update
Bulletin has no description...
[USN-2650-1] wpa_supplicant and hostapd vulnerabilities
========================================================================== Ubuntu Security Notice USN-2650-1 June 16, 2015 wpa, wpasupplicant vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...
hostapd and wpa_supplicant denial of service vulnerabilities (CNVD-2015-03931)
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...
hostapd and wpa_supplicant denial of service vulnerability (CNVD-2015-03930)
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...
hostapd and wpa_supplicant denial of service vulnerabilities (CNVD-2015-03929)
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...
hostapd and wpa_supplicant denial of service vulnerabilities (CNVD-2015-03932)
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...
hostapd and wpa_supplicant WMM Action Frame Parser Integer Overflow Vulnerability
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background and is used to support WEP, WPA/WPA2 and WAPI wireless protocols and encrypted authentication. An integer overflow vulnerability exists in the WMM Action...
hostapd and wpa_supplicant Total-Length field length denial of service vulnerability
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background and is used to support WEP, WPA/WPA2 and WAPI wireless protocols and encrypted authentication. The EAP-pwd server-side and peer-side implementations of...
Ubuntu 14.04 LTS : wpa_supplicant and hostapd vulnerabilities (USN-2650-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2650-1 advisory. Kostya Kortchinsky discovered multiple flaws in wpasupplicant and hostapd. A remote attacker could use these issues to cause wpasupplicant or hostapd to...
Ubuntu: Security Advisory (USN-2650-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-2650-1 wpa, wpasupplicant vulnerabilities
Kostya Kortchinsky discovered multiple flaws in wpasupplicant and hostapd. A remote attacker could use these issues to cause wpasupplicant or hostapd to crash, resulting in a denial of service. CVE-2015-4141, CVE-2015-4142, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146...
USN-2650-1: wpa_supplicant and hostapd vulnerabilities
Kostya Kortchinsky discovered multiple flaws in wpasupplicant and hostapd. A remote attacker could use these issues to cause wpasupplicant or hostapd to crash, resulting in a denial of service. CVE-2015-4141, CVE-2015-4142, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146...
DEBIAN-CVE-2015-4146
The EAP-pwd peer implementation in hostapd and wpasupplicant 1.0 through 2.4 does not clear the L Length and M More flags before determining if a response should be fragmented, which allows remote attackers to cause a denial of service crash via a crafted message...
CVE-2015-4146
The EAP-pwd peer implementation in hostapd and wpasupplicant 1.0 through 2.4 does not clear the L Length and M More flags before determining if a response should be fragmented, which allows remote attackers to cause a denial of service crash via a crafted message...