Debian Wpa vulnerabilities
46 known vulnerabilities affecting debian/wpa.
Total CVEs
46
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH13MEDIUM30LOW3
Vulnerabilities
Page 3 of 3
CVE-2015-4145P4MEDIUMCVSS 5.0fixed in wpa 2.3-2.2 (bookworm)2015
CVE-2015-4145 [MEDIUM] CVE-2015-4145: wpa - The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 thr...
The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not validate a fragment is already being processed, which allows remote attackers to cause a denial of service (memory leak) via a crafted message.
Scope: local
bookworm: resolved (fixed in 2.3-2.2)
bullseye: resolved (fixed in 2.3-2.2)
forky: resolved (fixed in 2.3-2.2)
sid: r
debian
CVE-2015-4146P4MEDIUMCVSS 5.0fixed in wpa 2.3-2.2 (bookworm)2015
CVE-2015-4146 [MEDIUM] CVE-2015-4146: wpa - The EAP-pwd peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 do...
The EAP-pwd peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not clear the L (Length) and M (More) flags before determining if a response should be fragmented, which allows remote attackers to cause a denial of service (crash) via a crafted message.
Scope: local
bookworm: resolved (fixed in 2.3-2.2)
bullseye: resolved (fixed in 2.3-2.2)
forky: reso
debian
CVE-2015-8041P4MEDIUMCVSS 5.0fixed in wpa 2.3-2.2 (bookworm)2015
CVE-2015-8041 [MEDIUM] CVE-2015-8041: wpa - Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and w...
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which triggers an out-of-bounds read.
Scope: local
bookworm: resolved (fixed in 2.3-2.2)
bullseye: re
debian
CVE-2015-4142P4MEDIUMCVSS 4.3fixed in wpa 2.3-2.2 (bookworm)2015
CVE-2015-4142 [MEDIUM] CVE-2015-4142: wpa - Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 an...
Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpa_supplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service (crash) via a crafted frame, which triggers an out-of-bounds read.
Scope: local
bookworm: resolved (fixed in 2.3-2.2)
bullseye: resolved (fixed in 2.3-2.2)
f
debian
CVE-2015-5310P4MEDIUMCVSS 4.3fixed in wpa 2.3-2.3 (bookworm)2015
CVE-2015-5310 [MEDIUM] CVE-2015-5310: wpa - The WNM Sleep Mode code in wpa_supplicant 2.x before 2.6 does not properly ignor...
The WNM Sleep Mode code in wpa_supplicant 2.x before 2.6 does not properly ignore key data in response frames when management frame protection (MFP) was not negotiated, which allows remote attackers to inject arbitrary broadcast or multicast packets or cause a denial of service (ignored packets) via a WNM Sleep Mode response.
Scope: local
bookworm: resolved (fixed in 2.
debian
CVE-2019-9495P4MEDIUMCVSS 5.9fixed in wpa 2:2.7+git20190128+0c1e29f-4 (bookworm)2019
CVE-2019-9495 [MEDIUM] CVE-2019-9495: wpa - The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to s...
The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to side-channel attacks as a result of cache access patterns. All versions of hostapd and wpa_supplicant with EAP-PWD support are vulnerable. The ability to install and execute applications is necessary for a successful attack. Memory access patterns are visible in a shared cache. Weak passwords
debian
← Previous3 / 3