-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-c43c1ee06f 2018-08-23 09:43:24.282301 --------------------------------------------------------------------------------
Name : wpa_supplicant Product : Fedora 27 Version : 2.6 Release : 14.fc27 URL : http://w1.fi/wpa_supplicant/ Summary : WPA/WPA2/IEEE 802.1X Supplicant Description : wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11 authentication/association of the wlan driver.
-------------------------------------------------------------------------------- Update Information:
fix for CVE-2018-14526 -------------------------------------------------------------------------------- ChangeLog:
* Wed Aug 8 2018 Davide Caratti dcaratti@redhat.com - 1:2.6-14 - Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526) * Tue Jan 16 2018 Davide Caratti dcaratti@redhat.com - 1:2.6-13 - Don't restart wpa_supplicant.service on package upgrade (rh#1535233) * Wed Nov 1 2017 Ji���� Klime�� blueowl@centrum.cz - 1:2.6-12 - Fix crash when using MACsec without loaded macsec.ko (rh #1497640) - Enable Fast BSS Transition for station mode (rh #1372928) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1614939 - CVE-2018-14526 wpa_supplicant: Unauthenticated EAPOL-Key decryption in wpa_supplicant [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1614939 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-c43c1ee06f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------