Candidate: CVE-2019-5061
PublicDate: 2019-12-12 22:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5061
 https://talosintelligence.com/vulnerability_reports/TALOS-2019-0849
Description:
 An exploitable denial-of-service vulnerability exists in the hostapd 2.6,
 where an attacker could trigger AP to send IAPP location updates for
 stations, before the required authentication process has completed. This
 could lead to different denial of service scenarios, either by causing CAM
 table attacks, or by leading to traffic flapping if faking already existing
 clients in other nearby Aps of the same wireless infrastructure. An
 attacker can forge Authentication and Association Request packets to
 trigger this vulnerability.
Ubuntu-Description:
Notes:
 sbeattie| upstream fix appears to be to remove (the incomplete) IAPP
   support completely.
Mitigation:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [6.5 MEDIUM]


Patches_wpa:
 upstream: https://w1.fi/cgit/hostap/commit/?id=018edec9b2bd3db20605117c32ff79c1e625c432
Tags_wpa: universe-binary
upstream_wpa: needs-triage
precise/esm_wpa: DNE
trusty_wpa: ignored (out of standard support)
trusty/esm_wpa: needs-triage
xenial_wpa: ignored (end of standard support, was needs-triage)
esm-infra/xenial_wpa: needs-triage
bionic_wpa: needs-triage
disco_wpa: ignored (reached end-of-life)
eoan_wpa: ignored (reached end-of-life)
focal_wpa: needs-triage
groovy_wpa: ignored (reached end-of-life)
hirsute_wpa: released (2:2.9.0-20build1)
impish_wpa: released (2:2.9.0-20build1)
jammy_wpa: released (2:2.9.0-20build1)
devel_wpa: released (2:2.9.0-20build1)