-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 30 Apr 2024 22:45:18 +0000 Source: wpa Binary: eapoltest eapoltest-dbgsym hostapd hostapd-dbgsym libwpa-client-dev wpagui wpagui-dbgsym wpasupplicant wpasupplicant-dbgsym wpasupplicant-udeb Architecture: mips64el Version: 2:2.9.0-21+deb11u1 Distribution: bullseye Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-05) Changed-By: Bastien Roucariès Description: eapoltest - EAPoL testing utility hostapd - access point and authentication server for Wi-Fi and Ethernet libwpa-client-dev - development files for WPA/WPA2 client support (IEEE 802.11i) wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - client support for WPA and WPA2 (IEEE 802.11i) (udeb) Closes: 1064061 Changes: wpa (2:2.9.0-21+deb11u1) bullseye; urgency=high . * Non-maintainer upload on behalf of the Security Team. * Fix CVE-2023-52160 (Closes: #1064061): The implementation of PEAP in wpa_supplicant allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks. Checksums-Sha1: cc0a992ace10c2cb4389f5407503794c8e0fe05e 3621712 eapoltest-dbgsym_2.9.0-21+deb11u1_mips64el.deb f35e55414aa662603a0c166ad15a9bd57e4294ad 937220 eapoltest_2.9.0-21+deb11u1_mips64el.deb 1c245efd7926f6848b8498062483d912b8ac004c 2623900 hostapd-dbgsym_2.9.0-21+deb11u1_mips64el.deb 1b5ffa3c81c985d1290ad04e009d06ba6102cea5 759244 hostapd_2.9.0-21+deb11u1_mips64el.deb 6346a4c8de0cf63aacb03c41992898a1d22b465c 73168 libwpa-client-dev_2.9.0-21+deb11u1_mips64el.deb 63b799f9ece46a43c5065c40bdd9b3ba49dff00c 15081 wpa_2.9.0-21+deb11u1_mips64el-buildd.buildinfo 569ab4ef262a44216b4a92dcee0aee7bd79de51a 1764492 wpagui-dbgsym_2.9.0-21+deb11u1_mips64el.deb 2dabc651b7040803c61cd39cd0b3502d5faa1bc1 337288 wpagui_2.9.0-21+deb11u1_mips64el.deb c80f57ded5702204cbb41049c292c3ce29719250 4109300 wpasupplicant-dbgsym_2.9.0-21+deb11u1_mips64el.deb 5ab943981e1673d1b05c070946f634feabcb2af1 305084 wpasupplicant-udeb_2.9.0-21+deb11u1_mips64el.udeb 48274619be631a23849fcbd06cbb6f88c888db63 1174964 wpasupplicant_2.9.0-21+deb11u1_mips64el.deb Checksums-Sha256: 31df698b98e258c02926adf3359805f611478355193ad7f6e1e5b1297b9afe59 3621712 eapoltest-dbgsym_2.9.0-21+deb11u1_mips64el.deb 0595b58f95c821fd3bd899d51f849b73294883984b77e24a7834f48e95948ddc 937220 eapoltest_2.9.0-21+deb11u1_mips64el.deb 459cc1d5094d4046ebe93b850bdcba939b19763a1620e52d93605ebe03bb3a6d 2623900 hostapd-dbgsym_2.9.0-21+deb11u1_mips64el.deb 7d2abe6021bc32df7761cf8eb82ccc71cb2f60eba9c6875f7a265754a3c2edb7 759244 hostapd_2.9.0-21+deb11u1_mips64el.deb 768079cf3cdbfa1faced36ff99a9a2a06baee5d700218aecaf29664b146898fd 73168 libwpa-client-dev_2.9.0-21+deb11u1_mips64el.deb 21e92fedfadf55f688a3641d087e554a7ba93866dbccff79fd265e1eec56a62d 15081 wpa_2.9.0-21+deb11u1_mips64el-buildd.buildinfo 5d6c49442f88e54f8cc42b5f9c161f1ffbcda7397360000b1d7021801544d4fa 1764492 wpagui-dbgsym_2.9.0-21+deb11u1_mips64el.deb 931af3a8ecc44ad2160c1b5eb35d2d3be22d5053ba92640f07522e328c0ead93 337288 wpagui_2.9.0-21+deb11u1_mips64el.deb 28a80250113bcc41c51c2500684818a9bbb94622b155ed670f3f3e9a650d8886 4109300 wpasupplicant-dbgsym_2.9.0-21+deb11u1_mips64el.deb 73597c85227c44511d6c807c31d08738b2b18f509bcbcf9a27f2c696b9235452 305084 wpasupplicant-udeb_2.9.0-21+deb11u1_mips64el.udeb 086c662db7060ef09412812f7d58e805c4a8300f3f214029594ef3498f0930bc 1174964 wpasupplicant_2.9.0-21+deb11u1_mips64el.deb Files: ca548bf00b7f833b19d552be504b1729 3621712 debug optional eapoltest-dbgsym_2.9.0-21+deb11u1_mips64el.deb 08b11463200718dad32cbdce3b3e746e 937220 net optional eapoltest_2.9.0-21+deb11u1_mips64el.deb 9738f6feb864f7ec64450ff5d2607518 2623900 debug optional hostapd-dbgsym_2.9.0-21+deb11u1_mips64el.deb 14e8e0eef82247d8eb161376c44b6023 759244 net optional hostapd_2.9.0-21+deb11u1_mips64el.deb e41508a55339fca5eb7e0fab19caf97d 73168 libdevel optional libwpa-client-dev_2.9.0-21+deb11u1_mips64el.deb caf74bdd1e9691ee0f0cd7fce2591db2 15081 net optional wpa_2.9.0-21+deb11u1_mips64el-buildd.buildinfo 757ae5de4f9765a180c79d331e44a78f 1764492 debug optional wpagui-dbgsym_2.9.0-21+deb11u1_mips64el.deb 12cb999b023441dc5a0f360ef51a1ef6 337288 net optional wpagui_2.9.0-21+deb11u1_mips64el.deb 74f267b8b37e37db238ea30bb714b56f 4109300 debug optional wpasupplicant-dbgsym_2.9.0-21+deb11u1_mips64el.deb 481d9a533b135013f41d3728c61ba1d1 305084 debian-installer standard wpasupplicant-udeb_2.9.0-21+deb11u1_mips64el.udeb 64d3a00292b84d864b2af4bbe1a4d8d5 1174964 net optional wpasupplicant_2.9.0-21+deb11u1_mips64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEuQAPGkYIXAAfq7z1C2Vm2FYVKKAFAmZ0hCAACgkQC2Vm2FYV KKD7nw//XqE734xwyw7SUZyqufcYe13z3M6y/W1IcVenrXIh5pDOjUyBlCYyfpLp rVkTT5UhGSq3Ut69EzoynhEj1W/zvyXEqdE8ho1mWSEw1xQDagzFVzBo+syzRFWl inNyBwnNq6BDnwpDU7KWaukMGX7/6wNIw/3JJ9NndKguiQHZNruYz9AX9ZDd3h1/ PGWkiMgaZ9+N59G9IE9uqbH2Gd+5OaVN3M2dXjRh0zL4cLYppQEMDSwWU9n1CKTa u2Ec6Ke+AiGCJ622TzG+MSRQ4mAjcXe+cPzBKaYPrgL/uKusxvrdC8mtpIbCi031 50NNitGv3v9s6mZlLNICX4hnJ6pMJ4E0dVM5+v13voSpTc/WGD551pCQsKLLoaRL 2AZQ5BkT8f+Py+6DT70FFm14xldS6rrUNyDkhHowvX/15UYR+0tXy2rOehsh1m00 tumBcU9C+JwthuUT1KJi323kupU0pRwWD5Vg4XmHti47jTn8JbLCmTtw3/33sp0I Ko0Fe43NVwIxvv7f0tcsyRZ39B0KRkDwT/WNj9UdGAbCtYMBFjLsZauewA6B1tBS 5FewIFG+3ziPvGvSnQITBfMenvUnyoaGlRZ/LqNuukNWd/EaJdwS2gsZcLHYvSkq flVMov+pKUhhN+ka+Lko5cRWVv2zSJ3VPJiGtqENmJ53R0hYfzU= =avvi -----END PGP SIGNATURE-----