 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.1.1.2.2023.3380 |
| Category: | Debian Local Security Checks |
| Title: | Debian: Security Advisory (DLA-3380-1) |
| Summary: | The remote host is missing an update for the Debian 'firmware-nonfree' package(s) announced via the DLA-3380-1 advisory. |
| Description: | Summary: The remote host is missing an update for the Debian 'firmware-nonfree' package(s) announced via the DLA-3380-1 advisory. Vulnerability Insight: The firmware-nonfree package has been updated to include addtional firmware that may be requested by some drivers in Linux 5.10, availble for Debian LTS as backported kernel. Some of the updated firmware files adresses security vulnerabilities, which may allow Escalation of Privileges, Denial of Services and Information Disclosures. CVE-2020-24586 (INTEL-SA-00473) The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data. CVE-2020-24587 (INTEL-SA-00473) The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed. CVE-2020-24588 (INTEL-SA-00473) The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. CVE-2021-23168 (INTEL-SA-00621) Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-23223 (INTEL-SA-00621) Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-37409 (INTEL-SA-00621) Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-44545 (INTEL-SA-00621) Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2022-21181 (INTEL-SA-00621) Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. The following advisories are also fixed by this upload, but needs an updated Linux kernel to load the updated firmware: CVE-2020-12362 (INTEL-SA-00438) Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'firmware-nonfree' package(s) on Debian 10. Solution: Please install the updated package(s). CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2020-12362 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html Common Vulnerability Exposure (CVE) ID: CVE-2020-12363 Common Vulnerability Exposure (CVE) ID: CVE-2020-12364 Common Vulnerability Exposure (CVE) ID: CVE-2020-24586 Cisco Security Advisory: 20210511 Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification Affecting Cisco Products: May 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63 https://www.fragattacks.com https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html http://www.openwall.com/lists/oss-security/2021/05/11/12 Common Vulnerability Exposure (CVE) ID: CVE-2020-24587 Common Vulnerability Exposure (CVE) ID: CVE-2020-24588 Common Vulnerability Exposure (CVE) ID: CVE-2021-23168 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html Common Vulnerability Exposure (CVE) ID: CVE-2021-23223 Common Vulnerability Exposure (CVE) ID: CVE-2021-37409 Common Vulnerability Exposure (CVE) ID: CVE-2021-44545 Common Vulnerability Exposure (CVE) ID: CVE-2022-21181 |
| Copyright | Copyright (C) 2023 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |