-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: armhf Version: 2:2.9.0-21+deb11u1 Distribution: bullseye Urgency: high Maintainer: arm Build Daemon (arm-ubc-04) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.9.0-21+deb11u1) bullseye; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: 4cfedbad4a6765d8aee22e009064627d2fc2c616 3367584 eapoltest-dbgsym_2.9.0-21+deb11u1_armhf.deb d9601702d7c84b942c9a6c57f665e84d765f2d5e 874992 eapoltest_2.9.0-21+deb11u1_armhf.deb 0d4fb091409fdcd23d784d97b50a9e5dd84aca07 2449156 hostapd-dbgsym_2.9.0-21+deb11u1_armhf.deb 7c07253876c2cdd044b381d99aba7ea90a2b51c7 712224 hostapd_2.9.0-21+deb11u1_armhf.deb dc772b0501cdbb1792fa157dbb99ac3a3ebb8a76 69040 libwpa-client-dev_2.9.0-21+deb11u1_armhf.deb fcbacb8fddf42eddcb5bd012afb6c2f25c3726f6 15094 wpa_2.9.0-21+deb11u1_armhf-buildd.buildinfo 41ec0e010a3141fa3b7f1a2bc0a6107485eb8091 1848520 wpagui-dbgsym_2.9.0-21+deb11u1_armhf.deb c9fe8164ec2831a878df4c6ef33980d4b80f2d1f 340460 wpagui_2.9.0-21+deb11u1_armhf.deb e6b43a2da0dbfdf1ce573905190736315d3c0163 3819120 wpasupplicant-dbgsym_2.9.0-21+deb11u1_armhf.deb 602387cbc6ccc96f3b2b6a5c8559f506c7f1b088 278852 wpasupplicant-udeb_2.9.0-21+deb11u1_armhf.udeb 64d1363fa6a270b09ad67bdb6d8aa5714c5ee46b 1106372 wpasupplicant_2.9.0-21+deb11u1_armhf.deb Checksums-Sha256: f8a9c166fe7156baf039a9107c9f658f6e3e86971abe3375205bb04097bf9589 3367584 eapoltest-dbgsym_2.9.0-21+deb11u1_armhf.deb 8a27a4fbc8d7af0198f8f58d313dfc5ff880e98349d90c2d44901fffa63129bd 874992 eapoltest_2.9.0-21+deb11u1_armhf.deb dc7a7d1e543aa2dc308520bc477f7b89c85983b0350262140e642d978b46b2d7 2449156 hostapd-dbgsym_2.9.0-21+deb11u1_armhf.deb 0bbfb056c928523621e2f81ea4fdf1a860ef234113c0cdaf75ae5c33b565f513 712224 hostapd_2.9.0-21+deb11u1_armhf.deb 6f69efe6f2854b2cc36b74d20472f3eae048b3be87b82626477a271194a67f3d 69040 libwpa-client-dev_2.9.0-21+deb11u1_armhf.deb 9f2f4c1cc27573b4aa673021769f4a1d4f2a63acfc69d13beebf09b3c4117474 15094 wpa_2.9.0-21+deb11u1_armhf-buildd.buildinfo 7f752aac98b004cdc74f97574eed53c76db76dc7c45e18d709031ed4f02fbd13 1848520 wpagui-dbgsym_2.9.0-21+deb11u1_armhf.deb 2b820ae1269f65b36d6464ecca31187a202d1eddc1bc0e2db4fd08ba89b6504a 340460 wpagui_2.9.0-21+deb11u1_armhf.deb 30e14a5b9f9a452aebc2458ad5ebd9c92f8d799cbe3740f73e11477e3880a594 3819120 wpasupplicant-dbgsym_2.9.0-21+deb11u1_armhf.deb 3f03ac2fde24376d544c8705c10aa157c334929c85ab1a9264c17729f04b7e3c 278852 wpasupplicant-udeb_2.9.0-21+deb11u1_armhf.udeb 9d7cf4cd54254cd47f6720d7deb83e721c6bf0961873a6aeed0f40e452123f97 1106372 wpasupplicant_2.9.0-21+deb11u1_armhf.deb Files: 98901c8edff2c3af4f7e15f815d3a943 3367584 debug optional eapoltest-dbgsym_2.9.0-21+deb11u1_armhf.deb 3efdd513f1901b53ce8647b9edd19ab4 874992 net optional eapoltest_2.9.0-21+deb11u1_armhf.deb 5dc42ad3ac6a7348cc11d83fce37c6aa 2449156 debug optional hostapd-dbgsym_2.9.0-21+deb11u1_armhf.deb 4d3ee892d63ad879eac7c9daaf8f7ace 712224 net optional hostapd_2.9.0-21+deb11u1_armhf.deb 8f62831bd9b52484246e2333b9ce7913 69040 libdevel optional libwpa-client-dev_2.9.0-21+deb11u1_armhf.deb 149d14bfb4ab282f884acde515e752cd 15094 net optional wpa_2.9.0-21+deb11u1_armhf-buildd.buildinfo e8337df6414c54955016e91bcfac2ea8 1848520 debug optional wpagui-dbgsym_2.9.0-21+deb11u1_armhf.deb d85c48c1ae55059d5a207e22319b99fd 340460 net optional wpagui_2.9.0-21+deb11u1_armhf.deb dcfc8926e22dc826cc276a7729c5de6d 3819120 debug optional wpasupplicant-dbgsym_2.9.0-21+deb11u1_armhf.deb fb8e6cd3faf2c0556fa47f36765e381c 278852 debian-installer standard wpasupplicant-udeb_2.9.0-21+deb11u1_armhf.udeb 52e31ca508bd01a6bc910622742ea436 1106372 net optional wpasupplicant_2.9.0-21+deb11u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE6s8UzO+WAx8RRAOV80lOEvgzuSsFAmZ0gxgACgkQ80lOEvgz uSv7WQ/7BNM6HBrwD403PxIojKRzODj/sfTUAdhJi941tAXpwxhTgIu72yMAWtdU JdpSrpljPVcISFD4ly26yw7SnCpefpkoNe4/0pKuLWjvrCPhjy3v6juAkJfBXyDe NUh0wGC8jWt8JAkw9hEPGcWgxISJgO5+/cJiIFedqLpJ5c9+GUAH5fdFvx67UnAJ ehATKrGvzaiIoq9+xqX0PAKKVf4Y58FCz1MqiVSKTWg2AkiBJqUICotbxNKL58zY CW59zbbNZiPBwpvxnyP+C8scaQkCCTZViMn8d6G50l7ljn5BATK9itxnXdLExxCT wysIsH8MehDDkJCEe110TsNCyvec+A+gaffH7bOCG7oGTdJOFcmMCxC2CDu08JAN zlMBLTdAeSZcOmNd0HGYJSNUv0ewp4QtzparqtzfgjuXjcKwJDG8TR+/fCX3AGID IvAJ01fdVi3/RUmI5vrcnEyjsW7xOA8uH4Utkjy4IwoCoC/7VgtyVyHBaZGhrzyP S4VREpGBeaya6dyYGECRcTbdmfLG8wxWT19Lxq0xvXom2PGsaWpvcXj32DXqPl1S Cj4sVMuzPYg9sSYdUgux/0Xj0ltKOFyajiVRaUTOhD1Rp9L8e64399NkiDV9QKR8 18tbDo3SPp0QX7i0FJ4z421d9/tzCH2boCtIryhz+fSqMgexJdg= =kaG6 -----END PGP SIGNATURE-----