Sicherheit: Aufbau von unsicheren Netzwerkverbindungen in network-manager-applet (Aktualisierung)

Lesezeichen hinzufügen

--===============2356041633620887156==
Content-Type: multipart/signed; micalg="pgp-sha512";
protocol="application/pgp-signature";
boundary="=-N90TgWOlc8z3S+4lGJwl"

--=-N90TgWOlc8z3S+4lGJwl
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-1483-2
June 27, 2012

network-manager-applet vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04 LTS

Summary:

network-manager-applet could create insecure AdHoc wireless networks.

Software Description:
- network-manager-applet: GNOME frontend for NetworkManager

Details:

USN-1483-1 fixed a vulnerability in NetworkManager by disabling the
creation of WPA-secured AdHoc wireless connections. This update provides
the corresponding change for network-manager-applet.

Original advisory details:

It was discovered that certain wireless drivers incorrectly handled the
creation of WPA-secured AdHoc connections. This could result in AdHoc
wireless connections being created without any security at all. This update
removes WPA as a security choice for AdHoc connections in NetworkManager.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
network-manager-gnome 0.9.1.90-0ubuntu6.1

Ubuntu 11.04:
network-manager-gnome 0.8.4~git.20110318t152954.9c4c9a0-0ubuntu1.1

Ubuntu 10.04 LTS:
network-manager-gnome 0.8-0ubuntu3.1

After a standard system update you need to restart your session to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1483-2
http://www.ubuntu.com/usn/usn-1483-1
CVE-2012-2736

Package Information:
https://launchpad.net/ubuntu/+source/network-manager-applet/0.9.1.90-0ubuntu6.1
https://launchpad.net/ubuntu/+source/network-manager-applet/0.8.4~git.20110318t152954.9c4c9a0-0ubuntu1.1
https://launchpad.net/ubuntu/+source/network-manager-applet/0.8-0ubuntu3.1

--×90TgWOlc8z3S+4lGJwl
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAABCgAGBQJP6w+UAAoJEGVp2FWnRL6TrtMQAIKlkJv7CDJ8UFfqHOErGnCz
wixJD3idKiqM3hrmxK26Ujn1V+gkpkhTIFDGmznvAgiwu6O2/ZI0RwniNqrELgsn
qWV4D/TTz6t7/6y7ZHXmao1aIrbjNxAJTCQWJOWhPmbp0dx0npPb+xxYNHkb04tO
pSIsk8Q1BJOgecq+HTuAUSUrk0sSywNrA7V9zd9galj9Rfh55eMvAnhVXOrEvx6V
IGibWQ30sKX9yCqgWaq4O3f1okBitt7tf4icR/o5+3OBmXjI3ai3Ts9KmDVt1Ozs
T6w6Q8A60lDUStGwEynlPYsur8shalPc3ftmuTCsTqUzLAnj3pg9mzYSj3Y+h92s
owFJIen8DpDUvfTUw0aoIMT4BiJam9EbLkTna8ru9aU5xDKwVclwt3oX816Wka1v
8k+/gX4NxG4aII1OskSDBzVc9BteK2CzFbYwIS8kwt0p/nAe2IT0dwf7WYW4XLNM
wzN2TkiPlvBSe6B8uaKsttMLFjmoVBj/xIUeClgqdVjHHhuPuN618hDRQa23+AYU
bdWzVQHmMaN3Dnnx0PYV2EzjJA06m818ABg80YdMSOc1ZPZ5sg3D779sQPHC5ZRK
G6hHDrW+W3yXYTpxNeRCWBMSONqxa/2NfJUZRzZZl5Ky4o9wQJsTybTXdd0sQG7N
Dil99vz6NdnutNdYgqEb
=tpxC
-----END PGP SIGNATURE-----

--=-N90TgWOlc8z3S+4lGJwl--

--===============2356041633620887156==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============2356041633620887156==--