Fedora 28: wpa_supplicant Security Update
Summary
wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support
for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA
component that is used in the client stations. It implements key negotiation
with a WPA Authenticator and it controls the roaming and IEEE 802.11
authentication/association of the wlan driver.
fix for CVE-2018-14526
* Wed Aug 8 2018 Davide Caratti
- Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526)
* Fri Jun 22 2018 Davide Caratti
- Fix endoding of NL80211_ATTR_SMPS_MODE (rh#1570903)
* Fri May 11 2018 Davide Caratti
- Make PMF configurable using D-Bus (rh#1567474)
[ 1 ] Bug #1614939 - CVE-2018-14526 wpa_supplicant: Unauthenticated EAPOL-Key decryption in wpa_supplicant [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1614939
su -c 'dnf upgrade --advisory FEDORA-2018-41dfadd21a' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PEFP3OPDXRDJ2KHPPUJVDHUNXFNZFN7Q/
FEDORA-2018-41dfadd21a 2018-08-16 08:05:04.601796 Product : Fedora 28 Version : 2.6 Release : 17.fc28 URL : http://w1.fi/wpa_supplicant/ Summary : WPA/WPA2/IEEE 802.1X Supplicant Description : wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11 authentication/association of the wlan driver. fix for CVE-2018-14526 * Wed Aug 8 2018 Davide Caratti - 1:2.6-17 - Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526) * Fri Jun 22 2018 Davide Caratti - 1:2.6-16 - Fix endoding of NL80211_ATTR_SMPS_MODE (rh#1570903) * Fri May 11 2018 Davide Caratti - 1:2.6-15 - Make PMF configurable using D-Bus (rh#1567474) [ 1 ] Bug #1614939 - CVE-2018-14526 wpa_supplicant: Unauthenticated EAPOL-Key decryption in wpa_supplicant [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1614939 su -c 'dnf upgrade --advisory FEDORA-2018-41dfadd21a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PEFP3OPDXRDJ2KHPPUJVDHUNXFNZFN7Q/
Change Log
References