Oval Definition:oval:org.opensuse.security:def:59008
Revision Date:2020-12-01Version:1
Title:Security update for wpa_supplicant (Moderate)
Description:

This update for wpa_supplicant fixes the following issues:

This security issue was fixed:

- CVE-2018-14526: Under certain conditions, the integrity of EAPOL-Key messages was not checked, leading to a decryption oracle. An attacker within range of the Access Point and client could have abused the vulnerability to recover sensitive information (bsc#1104205).

This non-security issue was fixed:

- Enabled PWD as EAP method. This allows for password-based authentication, which is easier to setup than most of the other methods, and is used by the Eduroam network (bsc#1109209).
Family:unixClass:patch
Status:Reference(s):1104076
1104205
1109209
1111056
1111331
1119947
1124729
1124734
1126140
1126141
1126192
1126195
1126196
1126197
1126198
1126201
1127400
1128378
1131595
1132665
1133818
1135273
1139083
1143797
1145092
1146874
1149813
1152497
1154448
1154456
1154458
1154460
1154461
1154464
1154980
1155945
1157888
1158003
1158004
1158005
1158006
1158007
1166238
1172031
1172225
1176012
1176072
1176382
1176896
1176931
985657
CVE-2009-0159
CVE-2009-1252
CVE-2012-2737
CVE-2013-5211
CVE-2014-9293
CVE-2014-9294
CVE-2014-9295
CVE-2014-9296
CVE-2014-9297
CVE-2014-9298
CVE-2015-1798
CVE-2015-1799
CVE-2015-3405
CVE-2015-5219
CVE-2015-5300
CVE-2015-7691
CVE-2015-7692
CVE-2015-7701
CVE-2015-7702
CVE-2015-7703
CVE-2015-7704
CVE-2015-7705
CVE-2015-7848
CVE-2015-7849
CVE-2015-7850
CVE-2015-7851
CVE-2015-7852
CVE-2015-7853
CVE-2015-7854
CVE-2015-7855
CVE-2015-7871
CVE-2015-7973
CVE-2015-7974
CVE-2015-7975
CVE-2015-7976
CVE-2015-7977
CVE-2015-7978
CVE-2015-7979
CVE-2015-8138
CVE-2015-8139
CVE-2015-8140
CVE-2015-8158
CVE-2016-1547
CVE-2016-1548
CVE-2016-1549
CVE-2016-1550
CVE-2016-1551
CVE-2016-2516
CVE-2016-2517
CVE-2016-2518
CVE-2016-2519
CVE-2016-3189
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
CVE-2016-4957
CVE-2016-7426
CVE-2016-7427
CVE-2016-7428
CVE-2016-7429
CVE-2016-7431
CVE-2016-7433
CVE-2016-7434
CVE-2016-9042
CVE-2016-9310
CVE-2016-9311
CVE-2017-6451
CVE-2017-6458
CVE-2017-6460
CVE-2017-6462
CVE-2017-6463
CVE-2017-6464
CVE-2018-12126
CVE-2018-12126
CVE-2018-12127
CVE-2018-12127
CVE-2018-12130
CVE-2018-12130
CVE-2018-12207
CVE-2018-12472
CVE-2018-14526
CVE-2018-16884
CVE-2019-10208
CVE-2019-11091
CVE-2019-11091
CVE-2019-11135
CVE-2019-12068
CVE-2019-12068
CVE-2019-12900
CVE-2019-14378
CVE-2019-14378
CVE-2019-15890
CVE-2019-15890
CVE-2019-17340
CVE-2019-17340
CVE-2019-17341
CVE-2019-17341
CVE-2019-17342
CVE-2019-17342
CVE-2019-17343
CVE-2019-17343
CVE-2019-17344
CVE-2019-17344
CVE-2019-17345
CVE-2019-17346
CVE-2019-17346
CVE-2019-17347
CVE-2019-17347
CVE-2019-17348
CVE-2019-17348
CVE-2019-18277
CVE-2019-18420
CVE-2019-18421
CVE-2019-18422
CVE-2019-18423
CVE-2019-18424
CVE-2019-18425
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19582
CVE-2019-19583
CVE-2019-20503
CVE-2019-20807
CVE-2019-3886
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2020-0429
CVE-2020-0431
CVE-2020-14381
CVE-2020-14386
CVE-2020-25212
CVE-2020-6805
CVE-2020-6806
CVE-2020-6807
CVE-2020-6811
CVE-2020-6812
CVE-2020-6814
SUSE-SU-2018:3467-1
SUSE-SU-2019:1088-1
SUSE-SU-2019:1438-1
SUSE-SU-2019:2158-1
SUSE-SU-2019:2769-1
SUSE-SU-2019:2783-1
SUSE-SU-2019:3288-1
SUSE-SU-2019:3297-1
SUSE-SU-2020:0717-1
SUSE-SU-2020:1550-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libpolkit0-0.114-lp150.2.6 is installed
  • OR libpolkit0-32bit-0.114-lp150.2.6 is installed
  • OR polkit-0.114-lp150.2.6 is installed
  • OR polkit-devel-0.114-lp150.2.6 is installed
  • OR polkit-doc-0.114-lp150.2.6 is installed
  • OR typelib-1_0-Polkit-1_0-0.114-lp150.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • neovim-0.3.7-lp151.2.7 is installed
  • OR neovim-lang-0.3.7-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • res-signingkeys-3.0.38-52.26 is installed
  • OR smt-3.0.38-52.26 is installed
  • OR smt-support-3.0.38-52.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND wpa_supplicant-2.6-15.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • xen-4.9.4_08-3.66 is installed
  • OR xen-doc-html-4.9.4_08-3.66 is installed
  • OR xen-libs-4.9.4_08-3.66 is installed
  • OR xen-libs-32bit-4.9.4_08-3.66 is installed
  • OR xen-tools-4.9.4_08-3.66 is installed
  • OR xen-tools-domU-4.9.4_08-3.66 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-109.83 is installed
  • OR MozillaFirefox-translations-common-60.8.0-109.83 is installed
  • OR libfreebl3-3.44.1-58.28 is installed
  • OR libfreebl3-32bit-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-3.44.1-58.28 is installed
  • OR libsoftokn3-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-3.44.1-58.28 is installed
  • OR mozilla-nss-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-tools-3.44.1-58.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_176-94_88-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_24-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libspice-server1-0.12.8-6 is installed
  • OR spice-0.12.8-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libXt6-1.1.4-3 is installed
  • OR libXt6-32bit-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • xen-4.9.4_04-3.56 is installed
  • OR xen-doc-html-4.9.4_04-3.56 is installed
  • OR xen-libs-4.9.4_04-3.56 is installed
  • OR xen-libs-32bit-4.9.4_04-3.56 is installed
  • OR xen-tools-4.9.4_04-3.56 is installed
  • OR xen-tools-domU-4.9.4_04-3.56 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • openstack-aodh-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-api-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-doc-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-evaluator-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-expirer-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-listener-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-notifier-5.1.1~dev5-3.5 is installed
  • OR openstack-barbican-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-api-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-doc-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-keystone-listener-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-retry-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-worker-5.0.1~dev11-3.8 is installed
  • OR openstack-cinder-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-api-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-backup-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-doc-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-scheduler-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-volume-11.1.2~dev14-3.6 is installed
  • OR openstack-dashboard-12.0.4~dev1-3.8 is installed
  • OR openstack-designate-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-agent-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-api-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-central-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-doc-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-producer-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-sink-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-worker-5.0.2~dev5-3.5 is installed
  • OR openstack-glance-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-api-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-doc-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-registry-15.0.2~dev4-3.3 is installed
  • OR openstack-heat-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cfn-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cloudwatch-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-doc-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-engine-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-plugin-heat_docker-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-templates-0.0.0+git.1525957319.6b5a7cd-3.3 is installed
  • OR openstack-heat-test-9.0.5~dev11-3.6 is installed
  • OR openstack-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR openstack-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR openstack-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR openstack-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR openstack-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR openstack-ironic-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-api-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-conductor-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-doc-9.1.5~dev7-3.6 is installed
  • OR openstack-keystone-12.0.1~dev19-5.8 is installed
  • OR openstack-keystone-doc-12.0.1~dev19-5.8 is installed
  • OR openstack-manila-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-api-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-data-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-doc-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-scheduler-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-share-5.0.2~dev55-3.6 is installed
  • OR openstack-neutron-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-dhcp-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-doc-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-fwaas-doc-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-ha-tool-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-l3-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-agent-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-doc-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-macvtap-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metadata-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metering-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-server-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-vpn-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-doc-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vyatta-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-zvm-agent-8.0.1~dev12-4.3 is installed
  • OR openstack-nova-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-cells-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-compute-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-conductor-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-console-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-consoleauth-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-doc-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-novncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-placement-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-scheduler-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-serialproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-virt-zvm-8.0.1~dev56-3.3 is installed
  • OR openstack-nova-vncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-octavia-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-amphora-agent-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-api-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-health-manager-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-housekeeping-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-worker-1.0.3~dev21-4.6 is installed
  • OR openstack-trove-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-api-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-conductor-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-doc-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-guestagent-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-taskmanager-8.0.1~dev11-3.3 is installed
  • OR python-aodh-5.1.1~dev5-3.5 is installed
  • OR python-barbican-5.0.1~dev11-3.8 is installed
  • OR python-barbicanclient-4.5.2-4.3 is installed
  • OR python-barbicanclient-doc-4.5.2-4.3 is installed
  • OR python-cinder-11.1.2~dev14-3.6 is installed
  • OR python-designate-5.0.2~dev5-3.5 is installed
  • OR python-glance-15.0.2~dev4-3.3 is installed
  • OR python-heat-9.0.5~dev11-3.6 is installed
  • OR python-horizon-12.0.4~dev1-3.8 is installed
  • OR python-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR python-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR python-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR python-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR python-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR python-ironic-9.1.5~dev7-3.6 is installed
  • OR python-keystone-12.0.1~dev19-5.8 is installed
  • OR python-keystone-json-assignment-0.0.2-3.3 is installed
  • OR python-manila-5.0.2~dev55-3.6 is installed
  • OR python-manilaclient-1.17.3-3.3 is installed
  • OR python-manilaclient-doc-1.17.3-3.3 is installed
  • OR python-neutron-11.0.6~dev63-3.6 is installed
  • OR python-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR python-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR python-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR python-nova-16.1.5~dev49-3.8 is installed
  • OR python-octavia-1.0.3~dev21-4.6 is installed
  • OR python-trove-8.0.1~dev11-3.3 is installed
  • OR python-vmware-nsx-11.0.3~dev16-3.3 is installed
  • OR python-vmware-nsxlib-11.0.4~dev7-3.3 is installed
    • BACK