openSUSE Security Update : NetworkManager-gnome / NetworkManager / wpa_supplicant / etc (openSUSE-2011-15)

high Nessus Plugin ID 74520

Synopsis

The remote openSUSE host is missing a security update.

Description

NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network (CVE-2006-7246).

Please note that existing WPA2 Enterprise connections need to be deleted and re-created to take advantage of the new security checks.

Solution

Update the affected NetworkManager-gnome / NetworkManager / wpa_supplicant / etc packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=574266

Plugin Details

Severity: High

ID: 74520

File Name: openSUSE-2011-15.nasl

Version: 1.4

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.0

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:wpa_supplicant-debuginfo, p-cpe:/a:novell:opensuse:networkmanager-devel-32bit, p-cpe:/a:novell:opensuse:libnm-util2-debuginfo, p-cpe:/a:novell:opensuse:gnome-control-center-lang, p-cpe:/a:novell:opensuse:gnome-control-center-devel, p-cpe:/a:novell:opensuse:networkmanager-gnome-lang, p-cpe:/a:novell:opensuse:networkmanager-gnome-debuginfo, p-cpe:/a:novell:opensuse:libnm-glib-vpn1-32bit, p-cpe:/a:novell:opensuse:networkmanager-gnome, p-cpe:/a:novell:opensuse:libgnome-control-center1-debuginfo, p-cpe:/a:novell:opensuse:gnome-control-center, p-cpe:/a:novell:opensuse:networkmanager-debuginfo, p-cpe:/a:novell:opensuse:networkmanager-debugsource, p-cpe:/a:novell:opensuse:gnome-control-center-debuginfo, p-cpe:/a:novell:opensuse:libnm-glib-vpn1-debuginfo-32bit, p-cpe:/a:novell:opensuse:libgnome-control-center1, p-cpe:/a:novell:opensuse:wpa_supplicant, p-cpe:/a:novell:opensuse:networkmanager-gnome-debugsource, p-cpe:/a:novell:opensuse:libnm-gtk0-debuginfo, p-cpe:/a:novell:opensuse:networkmanager-devel, p-cpe:/a:novell:opensuse:networkmanager-lang, p-cpe:/a:novell:opensuse:libnm-glib4-debuginfo, p-cpe:/a:novell:opensuse:libnm-util2-32bit, p-cpe:/a:novell:opensuse:networkmanager, p-cpe:/a:novell:opensuse:wpa_supplicant-debugsource, p-cpe:/a:novell:opensuse:libnm-gtk-devel, p-cpe:/a:novell:opensuse:libnm-glib-vpn1, cpe:/o:novell:opensuse:12.1, p-cpe:/a:novell:opensuse:gnome-control-center-branding-upstream, p-cpe:/a:novell:opensuse:wpa_supplicant-gui, p-cpe:/a:novell:opensuse:libnm-glib-vpn1-debuginfo, p-cpe:/a:novell:opensuse:libnm-glib4, p-cpe:/a:novell:opensuse:libnm-util2, p-cpe:/a:novell:opensuse:gnome-control-center-user-faces, p-cpe:/a:novell:opensuse:libnm-gtk0, p-cpe:/a:novell:opensuse:wpa_supplicant-gui-debuginfo, p-cpe:/a:novell:opensuse:libnm-glib4-32bit, p-cpe:/a:novell:opensuse:gnome-control-center-debugsource, p-cpe:/a:novell:opensuse:libnm-glib4-debuginfo-32bit, p-cpe:/a:novell:opensuse:libnm-util2-debuginfo-32bit

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 11/22/2011

Reference Information

CVE: CVE-2006-7246