SUSE-SU-2015:1013-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 21 Apr 2015, 14:30
Last modified:02 May 2025, 04:04
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
21 Apr 2015, 14:30
Published
Vulnerability first disclosed
02 May 2025, 04:04
Last Modified
Vulnerability information updated
Description
Security update for wpa_supplicant wpa_supplicant was updated to fix three security issues: - CVE-2015-0210: wpa_supplicant: broken certificate subject check this adds the 'domain_match' config option from upstream (additional to the already existing domain_suffix_match) - CVE-2014-3686: hostapd command execution - CVE-2015-1863: P2P SSID processing vulnerability
Affected Systems
- suse•wpa_supplicant&distro=SUSE Linux Enterprise Desktop 12
< 2.2-8.1
- suse•wpa_supplicant&distro=SUSE Linux Enterprise Server 12
< 2.2-8.1
- suse•wpa_supplicant&distro=SUSE Linux Enterprise Server for SAP Applications 12
< 2.2-8.1
References (7)
- https://www.suse.com/support/update/announcement/2015/suse-su-20151013-1/
- https://bugzilla.suse.com/900611
- https://bugzilla.suse.com/915323
- https://bugzilla.suse.com/927558
- https://www.suse.com/security/cve/CVE-2014-3686
- https://www.suse.com/security/cve/CVE-2015-0210
- https://www.suse.com/security/cve/CVE-2015-1863