Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2020.0260
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2020-0260)
Zusammenfassung:	The remote host is missing an update for the 'gnome-control-center, gnome-shell, networkmanager, networkmanager-applet' package(s) announced via the MGASA-2020-0260 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'gnome-control-center, gnome-shell, networkmanager, networkmanager-applet' package(s) announced via the MGASA-2020-0260 advisory. Vulnerability Insight: It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely (CVE-2020-10754). The networkmanager package has been updated to version 1.18.8, fixing this issue and other bugs. Also, the networkmanager-applet package has been updated to version 1.8.24. It also adds support for connecting to WPA3 / SAE protected wireless networks. gnome-control-center and gnome-shell have been fixed to correctly identify the connections as WPA3. Affected Software/OS: 'gnome-control-center, gnome-shell, networkmanager, networkmanager-applet' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-10754 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/44FTVXWKDYIAMOOP2PZMUY3D2QNWAVBZ/
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.