-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 30 Apr 2024 22:45:18 +0000
Source: wpa
Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb
Architecture: armhf
Version: 2:2.10-12+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: arm Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 eapoltest  - EAPoL testing utility
 hostapd    - access point and authentication server for Wi-Fi and Ethernet
 libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i)
 wpagui     - graphical user interface for wpa_supplicant
 wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i)
 wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb)
Closes: 1064061
Changes:
 wpa (2:2.10-12+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload on behalf of the Security Team.
   * Fix CVE-2023-52160 (Closes: #1064061):
     The implementation of PEAP in wpa_supplicant allows
     authentication bypass. For a successful attack,
     wpa_supplicant must be configured to not verify
     the network's TLS certificate during Phase 1
     authentication, and an eap_peap_decrypt vulnerability
     can then be abused to skip Phase 2 authentication.
     The attack vector is sending an EAP-TLV Success packet
     instead of starting Phase 2. This allows an adversary
     to impersonate Enterprise Wi-Fi networks.
Checksums-Sha1:
 93077de155988f6767d023bebee4773bc7a9d3d0 4005088 eapoltest-dbgsym_2.10-12+deb12u1_armhf.deb
 5f242d5be0b44144147a52a084d8b6e4887b25e2 963968 eapoltest_2.10-12+deb12u1_armhf.deb
 e0bcfc12f7bf42ca8eb62f60e3d05f1c00a767f3 2732232 hostapd-dbgsym_2.10-12+deb12u1_armhf.deb
 70d51638b46c46a2cc1e981561b4231f14142c11 740528 hostapd_2.10-12+deb12u1_armhf.deb
 a8163ac781e15d645959c6dcd51e1b197949f8c6 30900 libwpa-client-dev_2.10-12+deb12u1_armhf.deb
 8fd7d616c14c89eedd68002d8be88c9892b255bc 14841 wpa_2.10-12+deb12u1_armhf-buildd.buildinfo
 95d059843a5d9f8eb5635f7b0ff870b2a9a63b49 2199736 wpagui-dbgsym_2.10-12+deb12u1_armhf.deb
 a11a586eb700d7038562a683761911aea268d5e6 301260 wpagui_2.10-12+deb12u1_armhf.deb
 3a031cb29df89a3ec0723ad0a026db52de9b00c0 4501372 wpasupplicant-dbgsym_2.10-12+deb12u1_armhf.deb
 9f361fb74bb48369ec37f2a559a866f04ba3552f 312488 wpasupplicant-udeb_2.10-12+deb12u1_armhf.udeb
 8b3d402bf04da6fc2aebafcf01e383a02ac956df 1211068 wpasupplicant_2.10-12+deb12u1_armhf.deb
Checksums-Sha256:
 59239a3642521bf6852e9ec78ae88e754e450a53d855f0310cc00b893031b7c8 4005088 eapoltest-dbgsym_2.10-12+deb12u1_armhf.deb
 f1b6bb27986c70f3d3496ffb421475246d5f0a2d96178ec5305f4697270d95c7 963968 eapoltest_2.10-12+deb12u1_armhf.deb
 6cfbab58a99d9fb41d9a54125ce50d53e8a8a1cc3ad4a7a6c5a8fd787d0ae1f8 2732232 hostapd-dbgsym_2.10-12+deb12u1_armhf.deb
 8b75600c95258254d3618e023f822d8549767467d461b4d4da3d5604b3109985 740528 hostapd_2.10-12+deb12u1_armhf.deb
 fbabddcb309c6c4cd07ecbe7c71741d5f5c0fac677e8d3dceb6a1bc1f4279bd4 30900 libwpa-client-dev_2.10-12+deb12u1_armhf.deb
 37bb3aaf85ee47144838adbe095ed35307fcefbb62ff77398c1ab77f682cf638 14841 wpa_2.10-12+deb12u1_armhf-buildd.buildinfo
 04fad14d7ce2fb63af97582d39e36a670f0c8d7e72ce5ddbcb7dc66b09bf745d 2199736 wpagui-dbgsym_2.10-12+deb12u1_armhf.deb
 8c517d9275891774781497180f52fcb42348296ac92dfdba825f0a5f660ea520 301260 wpagui_2.10-12+deb12u1_armhf.deb
 3ec2322ec67f839c5816470e7ec6a15fe2dfaf4da01a4787009d4554d5e71356 4501372 wpasupplicant-dbgsym_2.10-12+deb12u1_armhf.deb
 7e13f7d5012aafc81d62724dad71d464849574f33d1bae07d320f80dc8abc977 312488 wpasupplicant-udeb_2.10-12+deb12u1_armhf.udeb
 6d3680b2ace4837c38809c4d44b53781cabb2e084df853280b79bc18e1f3a474 1211068 wpasupplicant_2.10-12+deb12u1_armhf.deb
Files:
 72ea281b334bfb15a9101bfb8cd8d19e 4005088 debug optional eapoltest-dbgsym_2.10-12+deb12u1_armhf.deb
 b53190c7f506ba201b6714b55dfcaa3f 963968 net optional eapoltest_2.10-12+deb12u1_armhf.deb
 73db07affdc61148f27babc3302bdb79 2732232 debug optional hostapd-dbgsym_2.10-12+deb12u1_armhf.deb
 0678e172520a6fce8a370b6b56f18c21 740528 net optional hostapd_2.10-12+deb12u1_armhf.deb
 82ca3b32e5002f4697379146f4cc2f1b 30900 libdevel optional libwpa-client-dev_2.10-12+deb12u1_armhf.deb
 5ae77f91c635d62160944f138110eb40 14841 net optional wpa_2.10-12+deb12u1_armhf-buildd.buildinfo
 03d41e39dc567b3bd135fe18bb8a4057 2199736 debug optional wpagui-dbgsym_2.10-12+deb12u1_armhf.deb
 0e7f2eca3bf2e12cc4f8f4ac207a5953 301260 net optional wpagui_2.10-12+deb12u1_armhf.deb
 bdd4d36fb486196a14f2532c8a698687 4501372 debug optional wpasupplicant-dbgsym_2.10-12+deb12u1_armhf.deb
 389d208f09e1c9e570e6a011ccb0388a 312488 debian-installer standard wpasupplicant-udeb_2.10-12+deb12u1_armhf.udeb
 01e24050a5bdd406c21ef75a9f6e6b4e 1211068 net optional wpasupplicant_2.10-12+deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=2zFS
-----END PGP SIGNATURE-----