[Git][security-tracker-team/security-tracker][master] add bug # for wpa vulnerabilities
Yves-Alexis Perez
corsac at debian.org
Wed Apr 10 16:56:55 BST 2019
Yves-Alexis Perez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c49096d4 by Yves-Alexis Perez at 2019-04-10T15:56:31Z
add bug # for wpa vulnerabilities
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4497,28 +4497,28 @@ CVE-2019-9501
CVE-2019-9500
RESERVED
CVE-2019-9499 [EAP-pwd peer missing commit validation for scalar/element]
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed>
RESERVED
CVE-2019-9498 [EAP-pwd server missing commit validation for scalar/element]
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed>
RESERVED
CVE-2019-9497 [EAP-pwd server not checking for reflection attack]
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed>
RESERVED
CVE-2019-9496 [SAE confirm missing state validation in hostapd/AP]
RESERVED
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed> (unimportant)
NOTE: SAE code not enabled in stretch
CVE-2019-9495 [cache attack against EAP-pwd]
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed>
RESERVED
CVE-2019-9494 [cache attack against SAE]
- - wpa <unfixed>
+ - wpa <unfixed> (bug #926801)
[stretch] - wpa <unfixed> (unimportant)
NOTE: SAE code not enabled in stretch
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c49096d4a4d3d9c5b3e4eff7ee31bf2fff919222
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c49096d4a4d3d9c5b3e4eff7ee31bf2fff919222
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190410/98b0917b/attachment.html>
More information about the debian-security-tracker-commits
mailing list