SUSE Package Hub - openSUSE-2021-545

Update Info

openSUSE-2021-545

Security update for hostapd

Type: security

Severity: important

Issued: 2021-04-12

Description:

This update for hostapd fixes the following issues:

- CVE-2021-30004: forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c (boo#1184348)
- CVE-2020-12695: UPnP SUBSCRIBE misbehavior in hostapd WPS AP (boo#1172700)
- CVE-2019-16275: AP mode PMF disconnection protection bypass (boo#1150934) 

- added AppArmor profile (source apparmor-usr.sbin.hostapd)

This update was imported from the openSUSE:Leap:15.2:Update update project.

References

CVE: CVE-2021-30004
CVE: CVE-2020-12695
CVE: CVE-2019-16275
Bugzilla: 1184348 VUL-0: CVE-2021-30004: wpa_supplicant, hostapd: forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c
Bugzilla: 1172700 VUL-0: CVE-2020-12695: hostapd: UPnP SUBSCRIBE misbehavior WPS AP
Bugzilla: 1150934 VUL-1: CVE-2019-16275: wpa_supplicant,hostapd: AP mode PMF disconnection

Packages

hostapd-2.9-bp152.2.3.1