Showing 1 - 4 of 4

CVE-2019-11555

Status Candidate

Overview

The EAP-pwd implementation in hostapd (EAP server) before 2.8 and wpa_supplicant (EAP peer) before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference (denial of service). This affects eap_server/eap_server_pwd.c and eap_peer/eap_pwd.c.

Related Files

Gentoo Linux Security Advisory 201908-25: Posted Aug 19, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201908-25 - A vulnerability in hostapd and wpa_supplicant could lead to a Denial of Service condition. Versions less than 2.8 are affected.; tags | advisory, denial of service; systems | linux, gentoo; advisories | CVE-2019-11555; SHA-256 | 0f58c1cbc7fdf0d8129935ae8c66e721bab0255c2b2cef5fc559655a0e25ca7d; Download | Favorite | View

Debian Security Advisory 4450-1: Posted May 24, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4450-1 - A vulnerability was found in the WPA protocol implementation found in wpa_supplication (station) and hostapd (access point).; tags | advisory, protocol; systems | linux, debian; advisories | CVE-2019-11555; SHA-256 | b9708563769297f2f8615d14579d54d20eb6303fdc77c3ffcafdb8c17466dfb6; Download | Favorite | View

Ubuntu Security Notice USN-3969-2: Posted May 9, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3969-2 - USN-3969-1 fixed a vulnerability in wpa_supplicant and hostapd. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that wpa_supplicant and hostapd incorrectly handled unexpected fragments when using EAP-pwd. A remote attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2019-11555; SHA-256 | d063662e4575bcd82421569a8449e9700b1d8fb3e9cecac39df898061caeb939; Download | Favorite | View

Ubuntu Security Notice USN-3969-1: Posted May 7, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3969-1 - It was discovered that wpa_supplicant and hostapd incorrectly handled unexpected fragments when using EAP-pwd. A remote attacker could possibly use this issue to cause a denial of service.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2019-11555; SHA-256 | 6e169c2098110fa624ea682fb1f9eff00b9bce4271250c82d0730503639041bc; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 286 files
indoushka 161 files
Jay Turla 150 files
Ubuntu 71 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,119)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,128)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,774)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,823)
UNIX (9,453)
UnixWare (188)
Windows (6,765)
Other

CVE-2019-11555

Overview

Related Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems