Описание
Security update for wpa_supplicant
This update for wpa_supplicant fixes the following issues:
- CVE-2023-52160: Bypassing WiFi Authentication (bsc#1219975).
Список пакетов
Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest
wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/5.5:latest
wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/base-5.5:latest
wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/kvm-5.5:latest
wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/rt-5.5:latest
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-Azure-llc
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-Azure-ltd
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-EC2-llc
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Manager-Server-5-0-EC2-ltd
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-Azure
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-BYOS
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-EC2
wpa_supplicant-2.10-150500.3.3.1
Image SLES15-SP5-Micro-5-5-GCE
wpa_supplicant-2.10-150500.3.3.1
SUSE Linux Enterprise Micro 5.5
wpa_supplicant-2.10-150500.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
wpa_supplicant-2.10-150500.3.3.1
openSUSE Leap 15.5
wpa_supplicant-2.10-150500.3.3.1
wpa_supplicant-gui-2.10-150500.3.3.1
Ссылки
- Link for SUSE-SU-2024:0764-1
- E-Mail link for SUSE-SU-2024:0764-1
- SUSE Security Ratings
- SUSE Bug 1219975
- SUSE CVE CVE-2023-52160 page
Описание
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks.
Затронутые продукты
Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest:wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/5.5:latest:wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/base-5.5:latest:wpa_supplicant-2.10-150500.3.3.1
Container suse/sle-micro/kvm-5.5:latest:wpa_supplicant-2.10-150500.3.3.1
Ссылки
- CVE-2023-52160
- SUSE Bug 1219975