drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in wpa_supplicant (Aktualisierung)
| Name: |
Zwei Probleme in wpa_supplicant (Aktualisierung) |
|
| ID: |
USN-4734-2 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 14.04 ESM |
|
| Datum: |
Mi, 17. Februar 2021, 06:27 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12695
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0326 |
|
| Applikationen: |
wpa_supplicant |
|
| Update von: |
Zwei Probleme in wpa_supplicant |
|
Originalnachricht |
--===============0198405385885437178==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="1z3GODAf0autvy/P"
Content-Disposition: inline
--1z3GODAf0autvy/P
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-4734-2
February 16, 2021
wpa vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 ESM
Summary:
Several security issues were fixed in wpa_supplicant and hostapd.
Software Description:
- wpa: client support for WPA and WPA2
Details:
USN-4734-1 fixed several vulnerabilities in wpa_supplicant. This
update provides the corresponding update for Ubuntu 14.04 ESM.
It was discovered that wpa_supplicant did not properly handle P2P
(Wi-Fi Direct) group information in some situations, leading to a
heap overflow. A physically proximate attacker could use this to cause a
denial of service or possibly execute arbitrary code. (CVE-2021-0326)
It was discovered that hostapd did not properly handle UPnP subscribe
messages in some circumstances. An attacker could use this to cause a
denial of service. (CVE-2020-12695)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 ESM:
hostapd 1:2.1-0ubuntu1.7+esm3
wpasupplicant 2.1-0ubuntu1.7+esm3
After a standard system update you need to reboot your computer to make
all the necessary changes.
References:
https://usn.ubuntu.com/4734-2
https://usn.ubuntu.com/4734-1
CVE-2020-12695, CVE-2021-0326
--1z3GODAf0autvy/P
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=ASC6
-----END PGP SIGNATURE-----
--1z3GODAf0autvy/P--
--===============0198405385885437178==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|
