-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: amd64 Version: 2:2.10-12+deb12u1 Distribution: bookworm Urgency: high Maintainer: amd64 Build Daemon (x86-grnet-03) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.10-12+deb12u1) bookworm; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: 458011856993c465d08b56b05d1c1c233877462e 4089208 eapoltest-dbgsym_2.10-12+deb12u1_amd64.deb 22a43a4be0377c0a81a7174964ec3c0e55c6be26 1151432 eapoltest_2.10-12+deb12u1_amd64.deb 576c892e892108981fa7d3e22b40ae52709eca8d 2797564 hostapd-dbgsym_2.10-12+deb12u1_amd64.deb f6a1757b10e5290209ebf9beac2d92c244165d46 866268 hostapd_2.10-12+deb12u1_amd64.deb 42d3819e436643bbde17304a68d4c9e737bc47d7 33672 libwpa-client-dev_2.10-12+deb12u1_amd64.deb 4fb0c69c4991857a7b166ee35e740ae12f445d57 15072 wpa_2.10-12+deb12u1_amd64-buildd.buildinfo a301e6c6945f4efab1aa6e1831ea487eb420332f 2212116 wpagui-dbgsym_2.10-12+deb12u1_amd64.deb 4898cfc4e9a84996c6de919172ca570fb09719d1 315296 wpagui_2.10-12+deb12u1_amd64.deb 24e30969c8f8e9ce906957579446cd3dfb0c1e0d 4598556 wpasupplicant-dbgsym_2.10-12+deb12u1_amd64.deb 06fd9a1906c7effe3640d25e7e6dbf789a5e9e32 374664 wpasupplicant-udeb_2.10-12+deb12u1_amd64.udeb 80946ec5bbc9a400bbcfd6e25639236925f55696 1418436 wpasupplicant_2.10-12+deb12u1_amd64.deb Checksums-Sha256: 0349f5c9887a555f5b88fa4dcd2a92faa9ca144654b0a21cea531d209b33b907 4089208 eapoltest-dbgsym_2.10-12+deb12u1_amd64.deb ed1955e293208a90312f61b2f8e1b3249b3de5501f2bd19fc74930ba06d7857c 1151432 eapoltest_2.10-12+deb12u1_amd64.deb 4a41f1acd61c462ae7a9eecfc624cc4162051056c217f7c2204f60e7c84ef3a6 2797564 hostapd-dbgsym_2.10-12+deb12u1_amd64.deb eebac1a0b121db7fda5805c17ced0e2d1ef852105e99f20e6bd25becff3c4a0e 866268 hostapd_2.10-12+deb12u1_amd64.deb 5e4155c8f09c60630830f09549f6dd23b5e8d1559abd359256daa6511f0b5702 33672 libwpa-client-dev_2.10-12+deb12u1_amd64.deb e5f94517df7baf62d83c78a128ff2d67346c01aca887667470b29f90a63e2ddc 15072 wpa_2.10-12+deb12u1_amd64-buildd.buildinfo 549f01e0794709f99a14e97e4f8da7ede974b29c63eb8d550a513a9c859aa8bc 2212116 wpagui-dbgsym_2.10-12+deb12u1_amd64.deb 9f246cde7db3fe00a29c62eb292950d45ae7f2186484eb5e38e63038f06beeb8 315296 wpagui_2.10-12+deb12u1_amd64.deb f104681d38f38be9a7fa57d5f16d50a1f56e87c78dfc5610f50c00b5a00c3b96 4598556 wpasupplicant-dbgsym_2.10-12+deb12u1_amd64.deb 6fdfa1ba16320b2db53b090b94fac9ba633614d080903c4c235124d112676c72 374664 wpasupplicant-udeb_2.10-12+deb12u1_amd64.udeb 826abd0fb0ac6c04a1aa4321fa753abbb7e49792054fe2b26ec383319a6a9e4d 1418436 wpasupplicant_2.10-12+deb12u1_amd64.deb Files: 8b5e12c32858da9119ab0fac96607047 4089208 debug optional eapoltest-dbgsym_2.10-12+deb12u1_amd64.deb 6a8d086f9c8de84a23ee0ec870c84b69 1151432 net optional eapoltest_2.10-12+deb12u1_amd64.deb 563b3fd776580d68f04cac3250155784 2797564 debug optional hostapd-dbgsym_2.10-12+deb12u1_amd64.deb efc2efa27871aa9a33fab380198377ad 866268 net optional hostapd_2.10-12+deb12u1_amd64.deb 4171e22e89e9a84864458f0a04bc4945 33672 libdevel optional libwpa-client-dev_2.10-12+deb12u1_amd64.deb 0defc243d52cba875bc44aa940836370 15072 net optional wpa_2.10-12+deb12u1_amd64-buildd.buildinfo 261a400383dba49a17ac50dd34c6b678 2212116 debug optional wpagui-dbgsym_2.10-12+deb12u1_amd64.deb 075f3db9d2cc04cf94884d551eedd2f0 315296 net optional wpagui_2.10-12+deb12u1_amd64.deb fbcb775b2e4b2ba97957b668aeb2da86 4598556 debug optional wpasupplicant-dbgsym_2.10-12+deb12u1_amd64.deb 1bd173327eb5ad5aedda59dc086c2d5a 374664 debian-installer standard wpasupplicant-udeb_2.10-12+deb12u1_amd64.udeb c7ab6b57727445cdde6a2b425c1e1ac3 1418436 net optional wpasupplicant_2.10-12+deb12u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEe8x49oT2k+seQstpgDm7h4zfCpIFAmZ0fPQACgkQgDm7h4zf CpKCQA//Y6lEyyHITbnSFiphm6lUzdxDyReFTAUGQXJ6R2taFH9qw0viVg9lVvm5 MgMt0reUHSo+PhGHDwpk5h7Ls0g5fSB6GxhdhpHliqnsP6oyeDyAThft3EGF6vvR A20Gp/rzlr1ZQR336dpJkHGAi/lZaNTAykT/fVEZHO/hwyfj3i46KC/cZ87qPL7l 3KeYlvJFKRwVeaX+/MWOPDAoQLX87dQ9VvhgOwshhjYb6eFmHLZmZXrBUtUQklOU nfyXa+ejBykLLTIl1WZzDUmPXI3qwMaZFawPKYHmyadJG6FtYup+B65nuH2JC87j ETPnijy24pZN5pDJ0uCyPUMGzCOj9bU8yerFVQz/W/qek6Doj9YZefJwUeVfZNbP 8PYxFtfRDKBWWqJXpXo/VxOpClgFPzoPaNpV+UAOZoDgCAO6UROLWkzMw/v1po9N tjB+ZME2yxH1clCjCM6d1bP1VB9md29lF+JXW0JjsVGOQYsQh1b0Xmqai/mRFhGF NAMvCrW/zJMArOvXWu2orRKZVIVsGxHJPQX28XY+Nfk5rHw/W7G6hwM6ubuyBi1Q R4pyX1IXkszcRR4rfCefA1g5Obc/YT141p+NOYxq7NVk9rzeZCC0iVwABjZOjHyw EAlyNcn4MwBRXYarok15BWQlDsz3OWNn9XPNzEqjfEU8vBqlOXo= =3Lnp -----END PGP SIGNATURE-----