drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in wpa_supplicant (Aktualisierung)
Name: |
Zwei Probleme in wpa_supplicant (Aktualisierung) |
|
ID: |
USN-4734-2 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 14.04 ESM |
|
Datum: |
Mi, 17. Februar 2021, 06:27 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12695
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0326 |
|
Applikationen: |
wpa_supplicant |
|
Update von: |
Zwei Probleme in wpa_supplicant |
|
Originalnachricht |
--===============0198405385885437178== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="1z3GODAf0autvy/P" Content-Disposition: inline
--1z3GODAf0autvy/P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-4734-2 February 16, 2021
wpa vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 ESM
Summary:
Several security issues were fixed in wpa_supplicant and hostapd.
Software Description: - wpa: client support for WPA and WPA2
Details:
USN-4734-1 fixed several vulnerabilities in wpa_supplicant. This update provides the corresponding update for Ubuntu 14.04 ESM.
It was discovered that wpa_supplicant did not properly handle P2P (Wi-Fi Direct) group information in some situations, leading to a heap overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2021-0326)
It was discovered that hostapd did not properly handle UPnP subscribe messages in some circumstances. An attacker could use this to cause a denial of service. (CVE-2020-12695)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04 ESM: hostapd 1:2.1-0ubuntu1.7+esm3 wpasupplicant 2.1-0ubuntu1.7+esm3
After a standard system update you need to reboot your computer to make all the necessary changes.
References: https://usn.ubuntu.com/4734-2 https://usn.ubuntu.com/4734-1 CVE-2020-12695, CVE-2021-0326
--1z3GODAf0autvy/P Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEpgY7tWAjCaQ8jrvULwmejQBegfQFAmAsO10ACgkQLwmejQBe gfRCVA/8CU98aCgQzNFFI9seD9CF91mHQXtDkEmkU+s4k2dN1d3N2pb7Kbh56iLj QlfNVkDonHzhfHpLcUW9aBwFMEQaL/o1W/JCd0jRH/j5X8g1g5kfu1rOhuS7b5NJ uizTHPg5eYha5CEs+MAljGcrHKQdQZ3vjESVstX36vvXmSTKqo3WBOUeMofsePP5 U8rL9mvOjSkPRdgnAFfaxA1/h2TQpDtCTfhc29Sy7uaGtyOBFbunHIzb99XWisf6 e6ngDHq+dT61GNpyBK8Z2aQkLi4MLQ4aQPhjlAItkYPLWnuq6qZcro91xHp7C+yq OoY7zSUlg5/1rSnYwaqwpR9+SD2R9B192WBztZE4n40HpaW+l/xWsH4k3mdezdmK cFcUoeJ7vTIBmUnb8sgxd+rDjZO47X0CO+JrTS3oTv2D+BPM0FesnPl2Z4pDS/hM Ua8MMlpyWpZ/9IyVCEFgTcYsEScXXeGRP+TtDq4QYrYpL6gyQESRB+WXzSF18TV2 GhVXVgKkVtxDru08FGPt6QetEMSs7LicJOG555yjkocp9Mvj6oTPWRX6iGM1kw7k AiMAhCyrvQ+4jFvjXX7l6KsBLwF+GHQ/YGvkYVV2xrsixFYFNL+Zl+QJJQMzL38K Nd6OuhsUmDuGaxOVMZnAI0dM8h1vPyOGxaiOM8ShYtltfJ4CHz8= =ASC6 -----END PGP SIGNATURE-----
--1z3GODAf0autvy/P--
--===============0198405385885437178== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|