VIR Vulnerability Intelligence Relay

CVE-2022-23303

medium
Published 2022-05-17 Β· Modified 2022-05-17
πŸ’¬ Discuss on Community ✚ Propose mitigation
CVSS v3
β€”
CVSS v4 NEW
β€”
not yet in upstream
VIR risk
5.5

Description

The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.

Predictions

Exploit likelihood
20%
Patch ETA
β€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Red Hat Errata β€” Red Hat Inc. Β· View original β†— Β· Open-Errata-API

Description wpa_supplicant: SAE side channel attacks as a result of cache access patterns CVSS v3: 9.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) Errata / fixed releases ProductPackageAdvisoryReleased Red Hat Enterprise Linux 9wpa_supplicant-1:2.10-2.el9RHBA-2022:39912022-05-17T00:00:00Z Package state ProductPackageState Red Hat Enterprise Linux 6wpa_supplicantOut of support scope Red Hat…

Description

wpa_supplicant: SAE side channel attacks as a result of cache access patterns

CVSS v3: 9.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Errata / fixed releases

ProductPackageAdvisoryReleased
Red Hat Enterprise Linux 9wpa_supplicant-1:2.10-2.el9RHBA-2022:39912022-05-17T00:00:00Z

Package state

ProductPackageState
Red Hat Enterprise Linux 6wpa_supplicantOut of support scope
Red Hat Enterprise Linux 7wpa_supplicantNot affected
Red Hat Enterprise Linux 8wpa_supplicantNot affected

Apply commands

bash fix
Apply RHBA-2022:3991 for Red Hat Enterprise Linux 9
yum update -y wpa_supplicant
# or:
dnf upgrade -y wpa_supplicant

Affected

VendorProductVersion
redhatRed Hat Enterprise Linux 7Not affected
redhatRed Hat Enterprise Linux 8Not affected

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
suse slesaffected
debian debianbookwormfixed2:2.10-1
debian debianbullseyefixed2:2.9.0-21+deb11u3
debian debianforkyfixed2:2.10-1
debian debiansidfixed2:2.10-1
debian debiantrixiefixed2:2.10-1

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.