-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: i386 Version: 2:2.10-12+deb12u1 Distribution: bookworm Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.10-12+deb12u1) bookworm; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: 79e4af44441b6e913fb57d24ee887560c52d4960 3529020 eapoltest-dbgsym_2.10-12+deb12u1_i386.deb 1768fc617065336bea75bcf29ccce25ebe2c276b 1255064 eapoltest_2.10-12+deb12u1_i386.deb dc1c18a6840db7e1563c931cf95faa1c5100f21a 2427836 hostapd-dbgsym_2.10-12+deb12u1_i386.deb 4aa0a932e043bbc77524e281fad4cfcd7d398c37 941352 hostapd_2.10-12+deb12u1_i386.deb e486053becbbccb7eb9e80f3adc941843a302596 35572 libwpa-client-dev_2.10-12+deb12u1_i386.deb 9e5266c13d30f81535c030dc50c9cf0079205316 14936 wpa_2.10-12+deb12u1_i386-buildd.buildinfo 92e7c5b6ae990f32d80a0a49dd0c821203ccaa06 2223520 wpagui-dbgsym_2.10-12+deb12u1_i386.deb 9f5e32b317034f308abe5d46bf2c5c6507d9d3ae 322968 wpagui_2.10-12+deb12u1_i386.deb 3ea95228cccd6ac4c4b428df98121856cd92c0f4 3966456 wpasupplicant-dbgsym_2.10-12+deb12u1_i386.deb 2e67ab1510fe97f79fe0e19f0d5aa8b3eb2a8073 408492 wpasupplicant-udeb_2.10-12+deb12u1_i386.udeb 0b249969da9595927780bfd49da7b4b8f029a509 1532128 wpasupplicant_2.10-12+deb12u1_i386.deb Checksums-Sha256: 7598bab92f7c9c64ca4be3c7a34a4a66320d3cc08e37c3ab53ea34af93ae9c9a 3529020 eapoltest-dbgsym_2.10-12+deb12u1_i386.deb 1f52eb49015a710ed117deb1f5f9ceac7b0ce5dab2fbb60beac64cd5e79fb08f 1255064 eapoltest_2.10-12+deb12u1_i386.deb cd7a6fff09e5b0e872c909d286e2f95df9e1f9d1c8020cdb9af0ba9640bae722 2427836 hostapd-dbgsym_2.10-12+deb12u1_i386.deb eee4f973909b0d8c37515de243a4e786d769695f23aab529e25f68dc3137f0bc 941352 hostapd_2.10-12+deb12u1_i386.deb 0f221e116d33b60e204b3ea915d5c74868b94e4dcb3da41f1ac511f66f40d860 35572 libwpa-client-dev_2.10-12+deb12u1_i386.deb bfd74ade22fd89690e4fcc63a83bd06cd21fcbdad6c5a62d15e7b0db499300e8 14936 wpa_2.10-12+deb12u1_i386-buildd.buildinfo dd80ebc86f1e53ab75d0b6065dc3f27f0a40c5e4f028057e7aa76648c04181fa 2223520 wpagui-dbgsym_2.10-12+deb12u1_i386.deb 4df2e6ca8ccb8ea6b7d737a11ad2a0ab91d2ce75a18904608d7d1044d7802a5a 322968 wpagui_2.10-12+deb12u1_i386.deb c1b18eb1cf061c197d563cad39ba3ccbee25897951d261b4750b7d286196a655 3966456 wpasupplicant-dbgsym_2.10-12+deb12u1_i386.deb 8545e8ea9505854be4232bbef99449a570ae6d78021e509bf8f15a73866481af 408492 wpasupplicant-udeb_2.10-12+deb12u1_i386.udeb 8b2a37046f819f97cd134130a2dd312e5aa06a5f907ae7583fb7efc851343fdd 1532128 wpasupplicant_2.10-12+deb12u1_i386.deb Files: 1bc39cefb898d54e0f0dc7d8c1e37748 3529020 debug optional eapoltest-dbgsym_2.10-12+deb12u1_i386.deb a726e542c85dd27a8bd54d6b2d481450 1255064 net optional eapoltest_2.10-12+deb12u1_i386.deb 5c5ea89e0819c708b4881b10932ffb5e 2427836 debug optional hostapd-dbgsym_2.10-12+deb12u1_i386.deb 8a59b70acb1f92a372eb25656c551d3f 941352 net optional hostapd_2.10-12+deb12u1_i386.deb e690f370b618347490620c19bfe7aad2 35572 libdevel optional libwpa-client-dev_2.10-12+deb12u1_i386.deb 0d64ddb644527e0c791404bf2f1cd765 14936 net optional wpa_2.10-12+deb12u1_i386-buildd.buildinfo 969b1e9224074260ba5a6a8e544a9bda 2223520 debug optional wpagui-dbgsym_2.10-12+deb12u1_i386.deb b4b77945ff95661d9cb1f45c1adb6ab7 322968 net optional wpagui_2.10-12+deb12u1_i386.deb b910cb2ffb206b6e76e3158f8eaee2a2 3966456 debug optional wpasupplicant-dbgsym_2.10-12+deb12u1_i386.deb d41aeb56c6cfadec1031d63d64a2d57a 408492 debian-installer standard wpasupplicant-udeb_2.10-12+deb12u1_i386.udeb cecbfcba91dbda4744347c34991f12d7 1532128 net optional wpasupplicant_2.10-12+deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEGBeuno8wiDXCewDuqqLQG5ksqMMFAmZ0fUYACgkQqqLQG5ks qMOpVhAAntQmd97nrJBZ7fildy5FMg+9Wd0qyJ+NhXk7OAQxyIkX6Q2MGmUGU2j3 TTJYDBJXDsc/8mAimR8ETT8ECiB8waaslNG482Wtw4+D4wVpAQGdgLHAP/lUUQiP fhBaSiIHKh+l1G5XMcbU/+ebFjAEnMql9CGkTvdzG2DeS7zxhegB9fdEP5wRDUfv O6/L6cqaMb1OUHlOME/MOF6JZE56A2yY/EJdiQedm4dbeyPITqlqYXinDv422sk0 V8M2iRf9T4vwQ9E7ChjmdElxLBarmVrAK+H36TvHjCiimbuZZFkLS4akfQThzLOD a/KXX9bBu+i9cuIX4khlovNFijjBUoNHPpvU79w334pNPVQPI+plvGtXCl1PSitx QbErDigDJSm79geSBeDaDdqj8IaiWg2N/AO+dvzrK9hg9lQ4+eJCiZ0DbkYGbycs AAPrw5h6l/8WJ+QNXs8WmNVf0fJcV7VXAF1OVruTvgj+iH5lyDv6CTsIT13anQ4a +1mEkJI4+Gaguy8UbfG2TY5YJXjzKIC4ppx88JG6sxuT+ZGGc78yM8Wr+H+RebZZ n/SOpqbPTEc7+IEAT2oM9wxLgY+TCW0/W4qoaAEYHetN91yNavCp8YFR6N/2mIxk 4/vRC16Ut+2Vtd3G0EEATRYuCxL7G02Tm4qn7JmZtWCkoJgX9Z8= =wSkp -----END PGP SIGNATURE-----