CVE-2022-23304
Description
Incomplete fix for CVE-2019-9495 leaves hostapd and wpa_supplicant before version 2.10 vulnerable to side-channel attacks via cache access patterns.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Incomplete fix for CVE-2019-9495 leaves hostapd and wpa_supplicant before version 2.10 vulnerable to side-channel attacks via cache access patterns.
Vulnerability
The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. This issue exists because of an incomplete fix for CVE-2019-9495 [3].
Exploitation
An attacker with network proximity and the ability to observe timing or cache behavior can exploit the side-channel. The attack requires the ability to participate in EAP-pwd handshake exchanges. The incomplete fix left residual data-dependent memory access patterns that leak information [3].
Impact
Successful exploitation may allow an attacker to recover the password used in the EAP-pwd protocol, leading to unauthorized network access. The impact is confidentiality disclosure of the password [3].
Mitigation
Upgrade to hostapd and wpa_supplicant version 2.10 or later. Gentoo advisory recommends updating to >=net-wireless/wpa_supplicant-2.10 and >=net-wireless/hostapd-2.10 [2]. No workaround is available. Patches are provided by the vendor [3].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
41- EAP-pwd/hostapddescription
- Range: <2.10
- osv-coords38 versionspkg:rpm/opensuse/wpa_supplicant&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/wpa_supplicant&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/wpa_supplicant&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/wpa_supplicant&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/wpa_supplicant&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/wpa_supplicant&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/wpa_supplicant&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 2.9-4.33.1+ 37 more
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-23.15.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-23.15.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-4.33.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
- (no CPE)range: < 2.9-15.22.1
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPDHU5MV464CZBPX7N2SNMUYP6DFIBZL/mitrevendor-advisory
- security.gentoo.org/glsa/202309-16mitrevendor-advisory
- w1.fi/security/2022-1/mitre
News mentions
0No linked articles in our index yet.