Description
An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions. By simulating an incomplete new association, an attacker can trigger a deauthentication against stations using 802.11w, resulting in a denial of service.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | =2:2.10-1 || =2:2.10-10 || =2:2.10-11 || =2:2.10-12 || =2:2.10-13 || =2:2.10-14 || =2:2.10-15 || =2:2.10-16 || =2:2.10-17 || =2:2.10-18 || =2:2.10-2 || =2:2.10-20 || =2:2.10-21 || =2:2.10-21.1 || =2:2.10-22 || =2:2.10-23 || =2:2.10-24 || =2:2.10-25 || =2:2.10-3 || =2:2.10-4 || =2:2.10-4exp1 || =2:2.10-5 || =2:2.10-6 || =2:2.10-7 || =2:2.10-8 || =2:2.10-8~bpo11+1 || =2:2.10-8~bpo11+2 || =2:2.10-9 || =2:2.11-1 || =2:2.11-2 || =2:2.9.0+git20200221+f65da0c-1 || =2:2.9.0+git20200517+dd2daf0-1 || =2:2.9.0+git20210909+a75fdcd-1 || =2:2.9.0+git20211018+2e122945fa53-1 || =2:2.9.0+git20211116+0b853303ae31-1 || =2:2.9.0-21 || =2:2.9.0-21+deb11u1 || =2:2.9.0-21+deb11u2 || =2:2.9.0-21+deb11u3 || =2:2.9.0-22 || =2:2.9.0-23 |
debian 12 | | =2:2.10-12 || =2:2.10-12+deb12u1 || =2:2.10-12+deb12u2 || =2:2.10-12+deb12u3 || =2:2.10-13 || =2:2.10-14 || =2:2.10-15 || =2:2.10-16 || =2:2.10-17 || =2:2.10-18 || =2:2.10-20 || =2:2.10-21 || =2:2.10-21.1 || =2:2.10-22 || =2:2.10-23 || =2:2.10-24 || =2:2.10-25 || =2:2.11-1 || =2:2.11-2 |
debian 13 | | =2:2.10-24 || =2:2.10-25 || =2:2.11-1 || =2:2.11-2 |
debian 14 | | =2:2.10-24 || =2:2.10-25 || =2:2.11-1 || =2:2.11-2 |
