SUSE-SU-2017:2745-1

Source
https://www.suse.com/support/update/announcement/2017/suse-su-20172745-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2017:2745-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2017:2745-1
Related
Published
2017-10-17T12:17:01Z
Modified
2017-10-17T12:17:01Z
Summary
Security update for wpa_supplicant
Details

This update for wpa_supplicant fixes the security issues:

  • Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated wpa_supplicant can interface properly with both vulnerable and patched implementations of WPA2, but an attacker won't be able to exploit the KRACK weaknesses in those connections anymore even if the other party is still vulnerable. [bsc#1056061, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088]
References

Affected packages

SUSE:OpenStack Cloud 6 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20OpenStack%20Cloud%206

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP2 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP3 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server for Raspberry Pi 12 SP2 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12-LTSS / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP1-LTSS / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP2 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP2 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP3 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "2.2-15.3.1"
        }
    ]
}