CVE-2019-9496: An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps
First published: Wed Apr 17 2019(Updated: )
An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd process to terminate, performing a denial of service attack. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.7 are affected.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| W1.fi Hostapd | <=2.7 | |
| W1.fi Wpa Supplicant | <=2.7 | |
| Fedoraproject Fedora | =28 | |
| Fedoraproject Fedora | =29 | |
| Fedoraproject Fedora | =30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html
- http://packetstormsecurity.com/files/152914/FreeBSD-Security-Advisory-FreeBSD-SA-19-03.wpa.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVMJOFEYBGXZLFF5IOLW67SSOPKFEJP3/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TDOZGR3T7FVO5JSZWK2QPR7AOFIEJTIZ/
- https://seclists.org/bugtraq/2019/May/40
- https://security.FreeBSD.org/advisories/FreeBSD-SA-19:03.wpa.asc
- https://w1.fi/security/2019-3/
- https://www.synology.com/security/advisory/Synology_SA_19_16
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TDOZGR3T7FVO5JSZWK2QPR7AOFIEJTIZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVMJOFEYBGXZLFF5IOLW67SSOPKFEJP3/
Frequently Asked Questions
What is CVE-2019-9496?
CVE-2019-9496 is a vulnerability that could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode.
What is the severity of CVE-2019-9496?
The severity of CVE-2019-9496 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2019-9496?
All versions of hostapd with SAE support up to version 2.7 and all versions of W1.fi Wpa Supplicant up to version 2.7 are vulnerable. Also, Fedora versions 28, 29, and 30 are affected.
How can an attacker exploit CVE-2019-9496?
An attacker can force the hostapd process to terminate, potentially causing a denial-of-service condition.
Are there any references available for CVE-2019-9496?
Yes, you can find more information about CVE-2019-9496 at the following references: [1](http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html), [2](http://packetstormsecurity.com/files/152914/FreeBSD-Security-Advisory-FreeBSD-SA-19-03.wpa.html), [3](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/)
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/remedy
- agent/references
- agent/last-modified-date
- agent/author
- agent/event
- agent/first-publish-date
- agent/tags
- agent/description
- vendor/w1.fi
- canonical/w1.fi hostapd
- version/w1.fi hostapd/2.7
- canonical/w1.fi wpa supplicant
- version/w1.fi wpa supplicant/2.7
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/28
- version/fedoraproject fedora/29
- version/fedoraproject fedora/30