CVE-2020-26144 - log back

CVE-2020-26144 edited at 03 Jun 2021 13:42:00
Description
- A security issue has been found in the IEEE 802.11 implementation (mac80211) of the Linux kernel. Unencrypted A-MSDU frames that start with RFC1042 header with EAPOL ethertype are always accepted.
+ An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.
References
https://www.openwall.com/lists/oss-security/2021/05/11/12
https://papers.mathyvanhoef.com/usenix2021.pdf
https://www.fragattacks.com/
- https://lore.kernel.org/linux-wireless/20210511180259.159598-1-johannes@sipsolutions.net/
CVE-2020-26144 edited at 11 May 2021 18:58:35
Description
- A security issue has been found in the ath10k and ath11k wireless drivers of the Linux kernel. Unencrypted A-MSDU frames that start with RFC1042 header with EAPOL ethertype are always accepted.
+ A security issue has been found in the IEEE 802.11 implementation (mac80211) of the Linux kernel. Unencrypted A-MSDU frames that start with RFC1042 header with EAPOL ethertype are always accepted.
References
https://www.openwall.com/lists/oss-security/2021/05/11/12
https://papers.mathyvanhoef.com/usenix2021.pdf
https://www.fragattacks.com/
https://lore.kernel.org/linux-wireless/20210511180259.159598-1-johannes@sipsolutions.net/
CVE-2020-26144 edited at 11 May 2021 18:49:25
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Insufficient validation
Description
+ A security issue has been found in the ath10k and ath11k wireless drivers of the Linux kernel. Unencrypted A-MSDU frames that start with RFC1042 header with EAPOL ethertype are always accepted.
References
+ https://www.openwall.com/lists/oss-security/2021/05/11/12
+ https://papers.mathyvanhoef.com/usenix2021.pdf
+ https://www.fragattacks.com/
+ https://lore.kernel.org/linux-wireless/20210511180259.159598-1-johannes@sipsolutions.net/
CVE-2020-26144 created at 11 May 2021 18:39:39
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes