Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 502
Alerts This Week
Warning Icon 1 502

Ubuntu 14.04 ESM USN-4757-2 Moderate: wpa_supplicant DoS Attack

ubuntu
Calendar Grey March 4, 2021
Dist Ubuntu Esm H88
The recent Ubuntu ESM update tackles a serious security flaw in wpa_supplicant, enhancing defenses against potential threats.
wpa_supplicant could be made to crash or run programs if it received specially crafted network traffic.

Summary

wpa_supplicant could be made to crash or run programs if it received

specially crafted network traffic.

Software Description:

- wpa: client support for WPA and WPA2

Details:

USN-4757-1 fixed a vulnerability in wpa_supplicant and hostapd. This update

provides the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

It was discovered that wpa_supplicant did not properly handle P2P

(Wi-Fi Direct) provision discovery requests in some situations. A

physically proximate attacker could use this to cause a denial of service

or possibly execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
  wpasupplicant                   2.1-0ubuntu1.7+esm4

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4757-2

https://ubuntu.com/security/notices/USN-4757-1

CVE-2021-27803

March 04, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.