rpm package

suse/wpa_supplicant&distro=HPE Helion OpenStack 8

pkg:rpm/suse/wpa_supplicant&distro=HPE%20Helion%20OpenStack%208

Vulnerabilities (23)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-13078	Med	5.3	< 2.9-15.22.1	2.9-15.22.1	Oct 17, 2017	Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.
CVE-2017-13077	Med	6.8	< 2.9-15.22.1	2.9-15.22.1	Oct 17, 2017	Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVE-2015-8041		—	< 2.9-15.22.1	2.9-15.22.1	Nov 9, 2015	Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which tri

CVE-2017-13078MedOct 17, 2017
affected < 2.9-15.22.1fixed 2.9-15.22.1
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.
CVE-2017-13077MedOct 17, 2017
affected < 2.9-15.22.1fixed 2.9-15.22.1
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVE-2015-8041Nov 9, 2015
affected < 2.9-15.22.1fixed 2.9-15.22.1
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which tri

Page 2 of 2