22 matches found
SUSE: Security Advisory (SUSE-SU-2024:3354-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:0977-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
wpa_supplicant-2.11-4.1 on GA media (moderate)
wpasupplicant-2.11-4.1 on GA media Announcement ID: openSUSE-SU-2025:14899-1 Rating: moderate Cross-References: CVE-2025-24912 CVSS scores: CVE-2025-24912 SUSE : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now...
CVE-2022-49326
CVE-2022-49326 affects RTL818x wireless in Linux kernel (rtl8180/rtl8185/rtl8187se family). The issue arises from using not initialized tx queues, where reading ring->entries when zero can crash the kernel. The fix patches the driver to ignore priority for cards with a single TX queue and to p...
MGASA-2024-0053 Updated wpa_supplicant packages fix security vulnerabilities
The updated packages fix a security vulnerability: The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt...
SUSE-SU-2022:0716-2 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2022-23303: Fixed side-channel attacks in SAE bsc1194732. - CVE-2022-23304: Fixed side-channel attacks in EAP-pwd bsc1194733...
MGASA-2021-0254 Updated wpa_supplicant, hostapd packages fix security vulnerability
The wpasupplicant and hostapd packages are updated to fix a forging attacks that may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. CVE-2021-30004...
SUSE-SU-2021:1166-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2021-30004: Fixed an issue where forging attacks might have occured because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c bsc1184348...
SUSE-SU-2021:1125-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2021-30004: Fixed an issue where forging attacks might have occured because AlgorithmIdentifier parameters were mishandled in tls/pkcs1.c and tls/x509v3.c bsc1184348...
SUSE-SU-2021:0720-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2021-27803: Fixed a P2P provision discovery processing vulnerability bsc1182805...
OPENSUSE-SU-2021:0284-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2021-0326: P2P group information processing vulnerability bsc1181777. This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2021:0443-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2021-0326: P2P group information processing vulnerability bsc1181777...
OPENSUSE-SU-2020:2053-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: Security issue fixed: - CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed: - Enable SAE support jscSLE-14992. - Limit P2PDEVICE name to appropriate ifname size. - Fix wicked wlan...
SUSE-SU-2020:3424-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: wpasupplicant was updated to 2.9 release: SAE changes - disable use of groups using Brainpool curves - improved protection against side channel attacks https://w1.fi/security/2019-6/ EAP-pwd changes - disable use of groups using Brainpool...
[SECURITY] Fedora 30 Update: wpa_supplicant-2.8-2.fc30
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
[SECURITY] Fedora 30 Update: wpa_supplicant-2.7-5.fc30
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
CentOS 7 : wpa_supplicant (CESA-2017:2907) (KRACK)
An update for wpasupplicant is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
SUSE-SU-2017:2752-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated...
SUSE-SU-2016:2305-1 Security update for wpa_supplicant
This update for wpasupplicant fixes the following issues: - CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding. bnc930077 - CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing. bnc930078 - CVE-2015-4143: EAP-pwd missing payload length validation. bnc9300...
SUSE-SU-2015:2221-1 Security update for wpa_supplicant
wpasupplicant was updated to fix two security issues. These security issues were fixed: - CVE-2015-4142: Integer underflow in the WMM Action frame parser in hostapd and wpasupplicant, when used for AP mode MLME/SME functionality, allowed remote attackers to cause a denial of service crash via a...