Описание
Security update for wpa_supplicant
This update for wpa_supplicant fixes the following issues:
- CVE-2023-52160: Bypassing WiFi Authentication (bsc#1219975).
Список пакетов
Container rancher/elemental-teal-rt/5.4:latest
wpa_supplicant-2.9-150000.4.39.1
Container rancher/elemental-teal/5.4:latest
wpa_supplicant-2.9-150000.4.39.1
Container suse/sle-micro-rancher/5.3:latest
wpa_supplicant-2.9-150000.4.39.1
Container suse/sle-micro-rancher/5.4:latest
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3-BYOS
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3-BYOS-Azure
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3-BYOS-EC2
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3-BYOS-GCE
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-3-EC2
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-BYOS
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-BYOS-Azure
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-BYOS-EC2
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-BYOS-GCE
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-EC2
wpa_supplicant-2.9-150000.4.39.1
Image SLES15-SP4-Micro-5-4-GCE
wpa_supplicant-2.9-150000.4.39.1
SUSE Enterprise Storage 7.1
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Micro 5.1
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Micro 5.2
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Micro 5.3
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Micro 5.4
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server 15 SP2-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server 15 SP3-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server 15 SP4-LTSS
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
wpa_supplicant-2.9-150000.4.39.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
wpa_supplicant-2.9-150000.4.39.1
SUSE Manager Proxy 4.3
wpa_supplicant-2.9-150000.4.39.1
SUSE Manager Server 4.3
wpa_supplicant-2.9-150000.4.39.1
openSUSE Leap Micro 5.3
wpa_supplicant-2.9-150000.4.39.1
openSUSE Leap Micro 5.4
wpa_supplicant-2.9-150000.4.39.1
Ссылки
- Link for SUSE-SU-2024:0819-1
- E-Mail link for SUSE-SU-2024:0819-1
- SUSE Security Ratings
- SUSE Bug 1219975
- SUSE CVE CVE-2023-52160 page
Описание
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks.
Затронутые продукты
Container rancher/elemental-teal-rt/5.4:latest:wpa_supplicant-2.9-150000.4.39.1
Container rancher/elemental-teal/5.4:latest:wpa_supplicant-2.9-150000.4.39.1
Container suse/sle-micro-rancher/5.3:latest:wpa_supplicant-2.9-150000.4.39.1
Container suse/sle-micro-rancher/5.4:latest:wpa_supplicant-2.9-150000.4.39.1
Ссылки
- CVE-2023-52160
- SUSE Bug 1219975