CVE-2015-4145
Publication date 1 June 2015
Last updated 24 July 2024
Ubuntu priority
The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not validate a fragment is already being processed, which allows remote attackers to cause a denial of service (memory leak) via a crafted message.
Status
Package | Ubuntu Release | Status |
---|---|---|
hostapd | ||
14.04 LTS trusty | Not in release | |
wpa | ||
14.04 LTS trusty |
Fixed 2.1-0ubuntu1.3
|
|
wpasupplicant | ||
14.04 LTS trusty | Not in release | |
References
Related Ubuntu Security Notices (USN)
- USN-2650-1
- wpa_supplicant and hostapd vulnerabilities
- 16 June 2015
Other references
- http://w1.fi/security/2015-4/
- http://w1.fi/security/2015-4/eap-pwd-missing-payload-length-validation.txt
- http://w1.fi/security/2015-4/0003-EAP-pwd-peer-Fix-Total-Length-parsing-for-fragment-r.patch
- http://w1.fi/security/2015-4/0004-EAP-pwd-server-Fix-Total-Length-parsing-for-fragment.patch
- http://www.openwall.com/lists/oss-security/2015/05/07/5
- http://www.openwall.com/lists/oss-security/2015/05/31/6
- https://www.cve.org/CVERecord?id=CVE-2015-4145