Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
200
security advisorymoderatenetwork securityScientific Linux: 2007-12-03 Moderate: madwifi DoS Threat
Moderate: madwifi security update. Date: Mon, 3 Dec 2007 12:05:03 -0600 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for madwifi on SL5.x i386/x86_64 Comments: To: "
Dec 03, 2007
Scientific Linux
91
security advisorydenial of servicegentooGentoo: GLSA 200711-09 Normal: MadWifi Denial of Service Risk
MadWifi does not correctly process beacon frames which can lead to a remotely triggered Denial of Service.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200711-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: MadWifi: Denial of Service Date: November 07, 2007 Bugs: #195705 ID: 200711-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= MadWifi does not correctly process beacon frames which can lead to a remotely triggered Denial of Service. Background ========= The MadWifi driver provides support for Atheros based IEEE 802.11 Wireless Lan cards. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-wireless/madwifi-ng < 0.9.3.3 > = 0.9.3.3 Description ========== Clemens Kolbitsch and Sylvester Keil reported an error when processing beacon frames with an overly large "length" value in the "xrates" element. Impact ===== A remote attacker could act as an access point and send a specially crafted packet to an Atheros based wireless client, possibly resulting in a Denial of Service (kernel panic). Workaround ========= There is no known workaround at this time. Resolution ========= All MadWifi users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-wireless/madwifi-ng-0.9.3.3" References ========= [ 1 ] CVE-2007-5448 https://www.cve.org/CVERecord?id=CVE-2007-5448 Availability =========== This GLSA and any updates to itare available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200711-09 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to
Nov 07, 2007
Gentoo
200
security advisorydenial of servicebuffer overflowSciLinux: Security Fixes in Madwifi 0.9.3.1 for SL5.x and SL4.x
Madwifi 0.9.3.1 fixes three security vulnerabilitie.. Date: Fri, 8 Jun 2007 16:28:18 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for madwifi on SL5.x, SL4.x i386/x86_64 Comments: To:
Jun 08, 2007
•Important
Scientific Linux
91
security advisorygentooinformation disclosureGentoo: 200704-15 Normal: MadWifi Driver DoS Threats Identified
Multiple vulnerabilities have been discovered in the MadWifi driver, possibly leading to a Denial of Service and information disclosure.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200704-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: MadWifi: Multiple vulnerabilities Date: April 17, 2007 Bugs: #173434 ID: 200704-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been discovered in the MadWifi driver, possibly leading to a Denial of Service and information disclosure. Background ========= The MadWifi driver provides support for Atheros based IEEE 802.11 Wireless Lan cards. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-wireless/madwifi-ng < 0.9.3 > = 0.9.3 Description ========== The driver does not properly process Channel Switch Announcement Information Elements, allowing for an abnormal channel change. The ieee80211_input() function does not properly handle AUTH frames and the driver sends unencrypted packets before WPA authentication succeeds. Impact ===== A remote attacker could send specially crafted AUTH frames to the vulnerable host, resulting in a Denial of Service by crashing the kernel. A remote attacker could gain access to sensitive information about network architecture by sniffing unencrypted packets. A remote attacker could also send a Channel Switch Count less than or equal to one to trigger a channel change, resulting in a communication loss and a Denial ofService. Workaround ========= There is no known workaround at this time. Resolution ========= All MadWifi users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-wireless/madwifi-ng-0.9.3" References ========= [ 1 ] CVE-2007-7178 https://www.cve.org/CVERecord?id=CVE-2006-7178 [ 2 ] CVE-2007-7179 https://www.cve.org/CVERecord?id=CVE-2006-7179 [ 3 ] CVE-2007-7180 https://www.cve.org/CVERecord?id=CVE-2006-7180 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200704-15 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to
Apr 18, 2007
Gentoo
100
security advisorycriticalremote code executionSUSE: 2006-074 Critical: Madwifi Remote Code Execution Threat
The madwifi-ng Atheros Wireless LAN card driver is subject to The madwifi-ng Atheros Wireless LAN card driver is subject to a remotely exploitable stack buffer overflow, which either code a remotely exploitable stack buffer overflow, which either code execution possibility or at least a denial of service (kernel crash). A physical local attacker (within WLAN range) has to provide an malicious acc [More...]. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ SUSE Security Announcement Package: madwifi Announcement ID: SUSE-SA:2006:074 Date: Mon, 11 Dec 2006 18:00:00 +0000 Affected Products: SUSE SLED 10 SUSE Linux 9.3 SUSE Linux 10.0 Vulnerability Type: remote code execution Severity (1-10): 10 SUSE Default Package: yes Cross-References: CVE-2006-6332 Content of This Advisory: 1) Security Vulnerability Resolved: Atheros WLAN driver remote root exploit Problem Description 2) Solution or Work-Around 3) Special Instructions and Notes 4) Package Location and Checksums 5) Pending Vulnerabilities, Solutions, and Work-Arounds: See SUSE Security Summary Report. 6) Authenticity Verification and Additional Information ______________________________________________________________________________ 1) Problem Description and Brief Discussion The madwifi-ng Atheros Wireless LAN card driver is subject to a remotely exploitable stack buffer overflow, which either code execution possibility or at least a denial of service (kernel crash). A physical local attacker (within WLAN range) has to provide an malicious access point which the card tries to associate with to be able to effect this attack. This issue is tracked by theMitre CVE ID CVE-2006-6332. This update also brings the madwifi driver to version 0.9.2.1. Affected SUSE Linux products: SUSE Linux Desktop 10 - Code execution is possible when this problem is exploited. Fixed madwifi-kmp-* packages are available and linked from this advisory. SUSE Linux 9.3 and 10.0 - These distributions use an older madwifi driver version, where an attacker can only overflow the buffer with hex characters, making code execution nearly impossible but a denial of service (crash) still likely. Updates for 9.3 and 10.0 are in preparation and will be in the next kernel security update. Other SUSE Linux versions do not ship the madwifi driver or are not vulnerable to this problem. For SUSE Linux 10.1 and openSUSE 10.2 the Madwifi community provides fixed driver modules and a new driver module layout on 2) Solution or Work-Around There is no known workaround, please install the update packages. 3) Special Instructions and Notes It is sufficient to rmmod and then modprobe the "ath_pci" kernel module after installing the update. The recommended way to get a known good state is to reboot the machine. 4) Package Location and Checksums The preferred method for installing security updates is to use the YaST Online Update (YOU) tool. YOU detects which updates are required and automatically performs the necessary steps to verify and install them. Alternatively, download the update packages for your distribution manually and verify their integrity by the methods listed in Section 6 of this announcement. Then install the packages using the command rpm -Fhv to apply the update, replacing with the filename of the downloaded RPM package. Our maintenance customers are notified individually. The packages are offered for installation from the maintenance web: SUSE SLED 10 http://support.novell.com/techcenter/psdb/3416396e4a9f8f1824b11dc72bbdce3e.html ______________________________________________________________________________ 5) Pending Vulnerabilities, Solutions, and Work-Arounds: See SUSE Security Summary Report. ______________________________________________________________________________ 6) Authenticity Verification and Additional Information - Announcement authenticity verification: SUSE security announcements are published via mailing lists and on Web sites. The authenticity and integrity of a SUSE security announcement is guaranteed by a cryptographic signature in each announcement. All SUSE security announcements are published with a valid signature. To verify the signature of the announcement, save it as text into a file and run the command gpg --verify replacing with the name of the file where you saved the announcement. The output for a valid signature looks like: gpg: Signature made using RSA key ID 3D25D3D9 gpg: Good signature from "SuSE Security Team " where is replaced by the date the document was signed. If the security team's key is not contained in your key ring, you can import it from the first installation CD. To import the key, use the command gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc - Package authenticity verification: SUSE update packages are available on many mirror FTP servers all over the world. While this service is considered valuable and important to the free and open source software community, the authenticity and the integrity of a package needs to be verified to ensure that it has not been tampered with. There are two verification methods that can be used independently from each other to prove the authenticity of a downloaded file or RPM package: 1) Using the internal gpg signatures of the rpm package 2) MD5 checksums as provided in this announcement 1) The internal rpm package signatures providean easy way to verify the authenticity of an RPM package. Use the command rpm -v --checksig to verify the signature of the package, replacing with the filename of the RPM package downloaded. The package is unmodified if it contains a valid signature from
Dec 11, 2006
•Critical
SuSE
91
security advisoryhigh severitygentooGentoo GLSA-202312-05: Critical Audacious Remote Code Execution Issue
MadWifi is vulnerable to a buffer overflow that could potentially lead to the remote execution of arbitrary code with root privileges.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: MadWifi: Kernel driver buffer overflow Date: December 10, 2006 Bugs: #157449 ID: 200612-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= MadWifi is vulnerable to a buffer overflow that could potentially lead to the remote execution of arbitrary code with root privileges. Background ========= MadWifi (Multiband Atheros Driver for Wireless Fidelity) provides a Linux kernel device driver for Atheros-based Wireless LAN devices. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-wireless/madwifi-ng < 0.9.2.1 > = 0.9.2.1 Description ========== Laurent Butti, Jerome Raznieski and Julien Tinnes reported a buffer overflow in the encode_ie() and the giwscan_cb() functions from ieee80211_wireless.c. Impact ===== A remote attacker could send specially crafted wireless WPA packets containing malicious RSN Information Headers (IE) that could potentially lead to the remote execution of arbitrary code as the root user. Workaround ========= There is no known workaround at this time. Resolution ========= All MadWifi users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-wireless/madwifi-ng-0.9.2.1" References ========= [ 1 ] CVE-2006-6332 https://www.cve.org/CVERecord?id=CVE-2006-6332 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200612-09 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to
Dec 10, 2006
Gentoo
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!