SUSE-SU-2017:2752-1

Source
https://www.suse.com/support/update/announcement/2017/suse-su-20172752-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2017:2752-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2017:2752-1
Related
Published
2017-10-17T15:04:39Z
Modified
2017-10-17T15:04:39Z
Summary
Security update for wpa_supplicant
Details

This update for wpa_supplicant fixes the following issues:

  • Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated wpa_supplicant can interface properly with both vulnerable and patched implementations of WPA2, but an attacker won't be able to exploit the KRACK weaknesses in those connections anymore even if the other party is still vulnerable. [bsc#1056061, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088]
References

Affected packages

SUSE:Linux Enterprise Point of Sale 11 SP3 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.1-6.18.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "0.7.1-6.18.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3-LTSS / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.1-6.18.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "0.7.1-6.18.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3-TERADATA / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATA

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.1-6.18.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "0.7.1-6.18.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.1-6.18.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "0.7.1-6.18.3.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 11 SP4 / wpa_supplicant

Package

Name
wpa_supplicant
Purl
purl:rpm/suse/wpa_supplicant&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.1-6.18.3.1

Ecosystem specific

{
    "binaries": [
        {
            "wpa_supplicant": "0.7.1-6.18.3.1"
        }
    ]
}