-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: arm64 Version: 2:2.10-12+deb12u1 Distribution: bookworm Urgency: high Maintainer: arm Build Daemon (arm-conova-04) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.10-12+deb12u1) bookworm; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: 4da9434027b6e8211269a0f3bb8c3ee8aa81a7e1 4034156 eapoltest-dbgsym_2.10-12+deb12u1_arm64.deb 56e8388e9ae99661c52b0a5f042b1d0158f38f50 1046512 eapoltest_2.10-12+deb12u1_arm64.deb bb8278ef195fc6fb9889cf13e43a06a4c5cf4941 2775772 hostapd-dbgsym_2.10-12+deb12u1_arm64.deb 0f297dfa47e97edd5f2821786f1ee99bdd6767c5 797548 hostapd_2.10-12+deb12u1_arm64.deb 112bb50bcaabfd67b73efc41b1e48e8108b9ec07 34248 libwpa-client-dev_2.10-12+deb12u1_arm64.deb 1e1e21bf161ed47e8a7223e9692fc0ce8305545a 14959 wpa_2.10-12+deb12u1_arm64-buildd.buildinfo caaef64ef0b5e9b881c979c63c57ff6ee1100b2e 2246084 wpagui-dbgsym_2.10-12+deb12u1_arm64.deb eaeb1ebe056d936153ace7bfa42e3669ee435050 304312 wpagui_2.10-12+deb12u1_arm64.deb 91bdb34f9121237b10019252e727ba6af84a232a 4549444 wpasupplicant-dbgsym_2.10-12+deb12u1_arm64.deb d350af0e93b9ef7f9b4910f1f5e38e4c0f336bcd 341000 wpasupplicant-udeb_2.10-12+deb12u1_arm64.udeb 5527d5077dd5c04838005f4142ac7a81e4265b81 1304472 wpasupplicant_2.10-12+deb12u1_arm64.deb Checksums-Sha256: 6baf5d856ce858caf9b11f14776173c53adf9212fcc92547e44f5eb0163bee9a 4034156 eapoltest-dbgsym_2.10-12+deb12u1_arm64.deb 1ee7098ba29248ffa221f6f511cf4974879352b81311442f213a289fa12f3d9a 1046512 eapoltest_2.10-12+deb12u1_arm64.deb 9fa665f04b74f3e826b41c015f5e1c0d8f71c08e3b75e825629a68b8d8fe3228 2775772 hostapd-dbgsym_2.10-12+deb12u1_arm64.deb 5a762df74a89ce4d5e50b410a110098f568ae63109f1fd435b56683abf7e5d0d 797548 hostapd_2.10-12+deb12u1_arm64.deb ef12bc8799e4788430e42533f029e01b554a317562fb93db84b2210d31745118 34248 libwpa-client-dev_2.10-12+deb12u1_arm64.deb 9f21f2d5310508519ce7f32b8b70d7f6734af918457ac9c9c88938b868c5cf54 14959 wpa_2.10-12+deb12u1_arm64-buildd.buildinfo df4c67653b6bf8dd7774f1560d05f835113d86e9c532a5d147005e971f3767c1 2246084 wpagui-dbgsym_2.10-12+deb12u1_arm64.deb a808f338c789a312e98b7f6ce2ccfb9873c4bc1cd679a87b0fb3ad76bbd72062 304312 wpagui_2.10-12+deb12u1_arm64.deb 7757f08204d9cd2e90b64af01b0c4a7b1413e56c97bdc50e0303a5fe90fd91b5 4549444 wpasupplicant-dbgsym_2.10-12+deb12u1_arm64.deb 87ca5413e9ddb175f6a21cf5eb6f72bf8d2b67a7173cee8d77e164c8f226a116 341000 wpasupplicant-udeb_2.10-12+deb12u1_arm64.udeb 95a7669956c096378a42ca89e0bda22a150a547b7770e9f5df6a3913462e41c1 1304472 wpasupplicant_2.10-12+deb12u1_arm64.deb Files: 8b1fd363c44b067a23448ba44be3ec7d 4034156 debug optional eapoltest-dbgsym_2.10-12+deb12u1_arm64.deb 51f35aca5dcb98995618b7834e3f5cd6 1046512 net optional eapoltest_2.10-12+deb12u1_arm64.deb f822af787133b868dad988ef899a030b 2775772 debug optional hostapd-dbgsym_2.10-12+deb12u1_arm64.deb cf6d9f7da46fbbecf51944ba4c8d98c2 797548 net optional hostapd_2.10-12+deb12u1_arm64.deb d885b295bb17f7907e603989adc518de 34248 libdevel optional libwpa-client-dev_2.10-12+deb12u1_arm64.deb 1746da9790f277fedde51ae1543f060e 14959 net optional wpa_2.10-12+deb12u1_arm64-buildd.buildinfo b28ada897df9a5f2f5165ee27521d9f7 2246084 debug optional wpagui-dbgsym_2.10-12+deb12u1_arm64.deb 38898638ab1caa61d69b2563ae9ab2f3 304312 net optional wpagui_2.10-12+deb12u1_arm64.deb 5820d325357e7e918bbcfbd615d3d7cf 4549444 debug optional wpasupplicant-dbgsym_2.10-12+deb12u1_arm64.deb 36cafdf6cdbae8a3c133625383ccd03a 341000 debian-installer standard wpasupplicant-udeb_2.10-12+deb12u1_arm64.udeb 616518c53a4e0d6d065ed48a39d1e8fa 1304472 net optional wpasupplicant_2.10-12+deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEElif5H+pIB11ZS5Aay8vyjiVDuNYFAmZ0fOsACgkQy8vyjiVD uNaTrQ//YzdRMOVemlq8xvz9y791tMVtpIncL8HQhHBPGrdu3FLLHqXHAnS35prW Hm7WtfskRwEbst0lZETaG/M+tGKy69HLx0qJQqGbsActuC9zd4+FcShj21E2wQVY tBrEltIEmyp8AZdU53xsp1Gd3w3pW88uSedD6jZBvJJ9R6wwi/ZGqjYNxdaSL3Yu ZLylJYy0tCnLKi+YdZtFW6uZORWUqBFZrSzxrcNYUFwG70XSNAcMwnEGs8kJkYHD W4MxZ96GTZJlWdktRemMgBSwoe++FXBJ18ytKyxc4M5q+uql2nXai4TCGJTkxm9G dyLS5Ls0J77unTrlwmM6ivEeuyOlHZ+Z9KVUxi7N4nJtbrROfg8MMCSoHRIid5Ji jM7y01WJbfxgNEQg0n2QF+g53XP9M8qmlMFP1vaqvtluL41xEEyws282G+2+MxIL qC3hQoVkqi6XD1md1BHCPaXjt24kGCWgLehA5XaCU5DPytfH2JSRrSR/t7xn7Zse FuJraQVFhxsJ1kPAjry7bbpYhVAZs6xVpYrQIJVNkI0qAlYpbppj/L/rUYiO7TPz twWA/Y9qI/eA9jrDkZ1YBY2hPP3XGOlA0cvRfT+i2oN/QkRhmXw+n1nIjsDjPhj2 Ex2FLkxMWKLm1O4sitso90jOCCPz/IFsTRcbAhXNIBRqPXoQAKo= =/Iwx -----END PGP SIGNATURE-----