Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
203
security advisorywpa_supplicanthostapdMageia: 2021-0254 Critical: wpa_supplicant Hostapd Forging Attack Fix
The wpa_supplicant and hostapd packages are updated to fix a forging attacks that may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. (CVE-2021-30004). References: - https://bugs.mageia.org/show_bug.cgi?id=29046 . MGASA-2021-0254 - Updated wpa_supplicant, hostapd packages fix security vulnerability Publication date: 13 Jun 2021 URL: https://advisories.mageia.org/MGASA-2021-0254.html Type: security Affected Mageia releases: 7, 8 CVE: CVE-2021-30004 The wpa_supplicant and hostapd packages are updated to fix a forging attacks that may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. (CVE-2021-30004). References: - https://bugs.mageia.org/show_bug.cgi?id=29046 - - - https://www.cve.org/CVERecord?id=CVE-2021-30004 SRPMS: - 8/core/wpa_supplicant-2.9-8.2.mga8 - 8/core/hostapd-2.9-5.1.mga8 - 7/core/wpa_supplicant-2.9-1.5.mga7 - 7/core/hostapd-2.9-1.3.mga7 . MGASA-2021-0255 introduces essential modifications for wpa_supplicant and hostapd addressing vulnerabilities in computational processing mechanisms.. wpa_supplicant update, hostapd fix, Mageia security advisory. . Severity: Critical. LinuxSecurity.com Team
Jun 13, 2021
•Critical
Mageia
202
security advisorymoderatewpa_supplicantopenSUSE Leap 15.3: 2021:0574-1 Critical: wpa_supplicant Replay Attack
An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for wpa_supplicant ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0563-1 Rating: moderate References: #1184348 Cross-References: CVE-2021-30004 CVSS scores: CVE-2021-30004 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-30004 (SUSE): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for wpa_supplicant fixes the following issues: - CVE-2021-30004: Fixed an issue where forging attacks might have occured because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c (bsc#1184348). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-563=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): wpa_supplicant-2.9-lp152.8.12.1 wpa_supplicant-debuginfo-2.9-lp152.8.12.1 wpa_supplicant-debugsource-2.9-lp152.8.12.1 wpa_supplicant-gui-2.9-lp152.8.12.1 wpa_supplicant-gui-debuginfo-2.9-lp152.8.12.1 References: https://www.suse.com/security/cve/CVE-2021-30004.html https://bugzilla.suse.com/1184348 . openSUSE Security Patch for wpa_supplicant. Fixing vulnerabilities related to cryptographic algorithm processing in TLS sections.. openSUSE Update,wpa_supplicant Fix,security patch. . LinuxSecurity.com Team
Apr 16, 2021
OpenSUSE
100
security advisorymoderatepatchSUSE MicroOS: 2021:1166-1 Moderate: wpa_supplicant Forging Attack
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for wpa_supplicant ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:1166-1 Rating: moderate References: #1184348 Cross-References: CVE-2021-30004 CVSS scores: CVE-2021-30004 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-30004 (SUSE): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: SUSE MicroOS 5.0 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for wpa_supplicant fixes the following issues: - CVE-2021-30004: Fixed an issue where forging attacks might have occured because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c (bsc#1184348). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE MicroOS 5.0: zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-1166=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-1166=1 Package List: - SUSE MicroOS 5.0 (aarch64 x86_64): wpa_supplicant-2.9-4.29.1 wpa_supplicant-debuginfo-2.9-4.29.1 wpa_supplicant-debugsource-2.9-4.29.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): wpa_supplicant-2.9-4.29.1 wpa_supplicant-debuginfo-2.9-4.29.1 wpa_supplicant-debugsource-2.9-4.29.1 References: https://www.suse.com/security/cve/CVE-2021-30004.html https://bugzilla.suse.com/1184348 . SUSE has released a security update forwpa_supplicant that resolves a moderate vulnerability linked to possible spoofing attempts, with guidance for applying patches.. wpa_supplicant update,SUSE MicroOS patch,moderate security fix,forging attack issue. . LinuxSecurity.com Team
Apr 13, 2021
SuSE
100
security advisorymoderate severitywpa_supplicantSUSE: 2022:1130-1 Critical: OpenSSL TLS/DTLS Denial of Service Resolved
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for wpa_supplicant ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:1125-1 Rating: moderate References: #1184348 Cross-References: CVE-2021-30004 CVSS scores: CVE-2021-30004 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-30004 (SUSE): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: SUSE Linux Enterprise Server 12-SP5 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for wpa_supplicant fixes the following issues: - CVE-2021-30004: Fixed an issue where forging attacks might have occured because AlgorithmIdentifier parameters were mishandled in tls/pkcs1.c and tls/x509v3.c (bsc#1184348) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-1125=1 Package List: - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): wpa_supplicant-2.9-23.12.1 wpa_supplicant-debuginfo-2.9-23.12.1 wpa_supplicant-debugsource-2.9-23.12.1 References: https://www.suse.com/security/cve/CVE-2021-30004.html https://bugzilla.suse.com/1184348 . An essential security patch has been released for NetworkManager in OpenSUSE, addressing a significant vulnerability.. SUSE Linux Enterprise, WPA Supplicant Update, Moderate Security Patch. . Severity: Important. LinuxSecurity.com Team
Apr 09, 2021
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!