-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: mipsel Version: 2:2.9.0-21+deb11u1 Distribution: bullseye Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-05) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.9.0-21+deb11u1) bullseye; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: c7f51e283e566da7cfccc81350cf14d443bbaa3a 3444964 eapoltest-dbgsym_2.9.0-21+deb11u1_mipsel.deb c81b8d9dcaf4cac3b3e019562c44cd7033391007 945500 eapoltest_2.9.0-21+deb11u1_mipsel.deb 47734a133bdd6c30f0f26e6e7ef32a8cd3a4bab0 2503432 hostapd-dbgsym_2.9.0-21+deb11u1_mipsel.deb f735f617569e6ae602f0c26b1c0463d7945074bd 761848 hostapd_2.9.0-21+deb11u1_mipsel.deb 5c14e3ab76dc8435ae0641a52a8182efd0a01bc7 72640 libwpa-client-dev_2.9.0-21+deb11u1_mipsel.deb 8cc91095c175abe5ab4cbc65a2442a0218efe4dc 15010 wpa_2.9.0-21+deb11u1_mipsel-buildd.buildinfo 1e2615a6adeb6d2551dbc4a95435a64f2029548e 1743912 wpagui-dbgsym_2.9.0-21+deb11u1_mipsel.deb 46184cd794ebbab4aaf7437587438261fe8cb652 339236 wpagui_2.9.0-21+deb11u1_mipsel.deb a06eb22853c28d2dd8f8a94e190758757af03969 3920744 wpasupplicant-dbgsym_2.9.0-21+deb11u1_mipsel.deb 893124c2f2057713f059d990041246334e444228 307904 wpasupplicant-udeb_2.9.0-21+deb11u1_mipsel.udeb e330657e4972d26a64138b9792cf5e7fe55cc0f7 1183876 wpasupplicant_2.9.0-21+deb11u1_mipsel.deb Checksums-Sha256: 3ed0c322eb10aad70f24b59792b9b0593ef34187101ebe297b9df38f5b6fec9c 3444964 eapoltest-dbgsym_2.9.0-21+deb11u1_mipsel.deb 31e00f8441f52c9668e64a6ee1ce02ddaa5bf291e5ac743dafd5d2c28cfb4f09 945500 eapoltest_2.9.0-21+deb11u1_mipsel.deb 85ac180b9105c4cf5b8a802b9778910139b8314c9f5895a0fe29dbdb6afe2cfa 2503432 hostapd-dbgsym_2.9.0-21+deb11u1_mipsel.deb faede76396a7ba18369c583f334c67bd78f8ac6ba164cb383e40f65a19f6887b 761848 hostapd_2.9.0-21+deb11u1_mipsel.deb 3bfe4536473aa5e00849db32b9aca5b7908229dc82aea919c96ee94104558a6e 72640 libwpa-client-dev_2.9.0-21+deb11u1_mipsel.deb db738af5a75ea0e39e0ea1e08d515d0b04359533ad9b2abe8971fb590f5a08fe 15010 wpa_2.9.0-21+deb11u1_mipsel-buildd.buildinfo 3aee18086b0c0bac7dfc565e4443225d0b50b477ce4efda31b2a1cef2770365c 1743912 wpagui-dbgsym_2.9.0-21+deb11u1_mipsel.deb 109f3f42ae2a9963edceddbba9bb353206758a68f15b36c01ee7c1a2cc9f2cae 339236 wpagui_2.9.0-21+deb11u1_mipsel.deb f37a9163aca00575efeae14c294c4f94e9998eb660ae931a36632b4cfce43875 3920744 wpasupplicant-dbgsym_2.9.0-21+deb11u1_mipsel.deb 8e3b8442002406c115ff176f1ba03f568cbfea43e94be0cc20567b792f314dfa 307904 wpasupplicant-udeb_2.9.0-21+deb11u1_mipsel.udeb 80b8ee36141cb4140100b6fd2f581cb31255a50bdab6777b103104325be5ebff 1183876 wpasupplicant_2.9.0-21+deb11u1_mipsel.deb Files: a5c8e643821fe10f8953a6fe3320f4dc 3444964 debug optional eapoltest-dbgsym_2.9.0-21+deb11u1_mipsel.deb 6ff86afe01ead45cfe6cbdf7eb12ca92 945500 net optional eapoltest_2.9.0-21+deb11u1_mipsel.deb 9af4016087d82160e0d04409bb644f64 2503432 debug optional hostapd-dbgsym_2.9.0-21+deb11u1_mipsel.deb e464a850576ac0bc3a33f5a752deb360 761848 net optional hostapd_2.9.0-21+deb11u1_mipsel.deb 39c8281d860281756b8f30c862a0a8bf 72640 libdevel optional libwpa-client-dev_2.9.0-21+deb11u1_mipsel.deb 715f1ba26202caa2cf56b45cf83e3270 15010 net optional wpa_2.9.0-21+deb11u1_mipsel-buildd.buildinfo 5103a6cbbc6bf33de113b7d370b37c9f 1743912 debug optional wpagui-dbgsym_2.9.0-21+deb11u1_mipsel.deb 5681e14465e8c277a70f2b065ed0bf44 339236 net optional wpagui_2.9.0-21+deb11u1_mipsel.deb e8a10ea3fe45543b4f4c0172c85d17eb 3920744 debug optional wpasupplicant-dbgsym_2.9.0-21+deb11u1_mipsel.deb 0ab9b33236992231afdc82541e3277d3 307904 debian-installer standard wpasupplicant-udeb_2.9.0-21+deb11u1_mipsel.udeb b32632cff922804e52e6092961bf9af9 1183876 net optional wpasupplicant_2.9.0-21+deb11u1_mipsel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEuQAPGkYIXAAfq7z1C2Vm2FYVKKAFAmZ0gokACgkQC2Vm2FYV KKDuog//QI/MTWLPgUrIlSld0zD0v6GYLBenOKVrnL5Kh5gChDI6SGJRFaV2blKg 7kKo99G9VVL+e93z6muDrWBL/mCCKH6oZEC/jH2HWhs3g2aqRLwYxopWe1denB2J 5/7Jimjusy4q9lEK5bG2NHeVbAv0Z8k1tcHmkdlGUsKjfneErr75ZimwOJFTB72h Eb1kyolWZBaWAw3lTUzMNf4jQ1QKeIEnDSZ5/arDP/KvkRK06v3wJbARjpcJHPXM XJcHGOnrPCpQPq6ykCD+EZTjnTaBVrNFR2ObU0mrMmdHb4jqkkmlHeWnRP0Rv8xj Zh0iLKVv/l90NEZFtsyozABjfBeTnngr43i+4yTnJbnN0gPBU/mvbI2GDfgYEJtb 9qtP4Gvd2z3qNtmzZ8+jtIr5fxGpETjlgGMsLx8D37mLMFPXSbZTza+8/vvoS8lD 5Fcm9vTk5XHUT2G8LWDrciiP6IxMwGEoydmuOikybGF03PNguzRgZ2UYl4Z+XYWt Vr0NFr7KWPThK3aQPdurU6hQWRsuZF55Re/1EZ7iTR5Y72z1XVU34JuXMu+HI5Su fAiKggFBgPC86Dra78/qh2xBHfDPvsnMSf7OlpRpQ7peigZvOxTmb8HiN16N9BQ2 nNV+ZXlUzTJGB+S9/SEEkuFUyUx8A9FVXC55GyqUqmH2iZRMqHg= =9wE7 -----END PGP SIGNATURE-----