Bug 1159188 - (CVE-2019-5061) VUL-0: CVE-2019-5061: hostapd: denial-of-service vulnerability by triggering AP to send IAPP location updates
VUL-0: CVE-2019-5061: hostapd: denial-of-service vulnerability by triggering ...
Status: NEW
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 42.3
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Vladimir Botka
Security Team bot
Depends on:
  Show dependency treegraph
Reported: 2019-12-13 10:24 UTC by Johannes Segitz
Modified: 2019-12-13 23:12 UTC (History)
0 users

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2019-12-13 10:24:33 UTC

An exploitable denial-of-service vulnerability exists in the hostapd 2.6, where
an attacker could trigger AP to send IAPP location updates for stations, before
the required authentication process has completed. This could lead to different
denial of service scenarios, either by causing CAM table attacks, or by leading
to traffic flapping if faking already existing clients in other nearby Aps of
the same wireless infrastructure. An attacker can forge Authentication and
Association Request packets to trigger this vulnerability.

The description says 2.6, but I assume that it affects hostapd until 018edec9b2bd3db20605117c32ff79c1e625c432 where IAPP support is remove. So Leap 15.1 and Factory affected