Debian 10260 Published by

A wpa security update has been released for Debian GNU/Linux 8 Extended LTS to address a vulnerability that could result in denial of service.



ELA-374-1 wpa security update

Package wpa
Version 2.3-1+deb8u13
Related CVEs CVE-2021-27803

A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.

For Debian 8 jessie, these problems have been fixed in version 2.3-1+deb8u13.

We recommend that you upgrade your wpa packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-374-1 wpa security update