CVE-2010-4648

Priority
Description
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c
in the Linux kernel before 2.6.37 does not properly implement a TKIP
protection mechanism, which makes it easier for remote attackers to obtain
access to a Wi-Fi network by reading Wi-Fi frames.
Ubuntu-Description
An error was reported in the kernel's ORiNOCO wireless driver's handling of
TKIP countermeasures. This reduces the amount of time an attacker needs
breach a wireless network using WPA+TKIP for security.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.37~rc6)
Patches:
Introduced by
d03032af511c56d3c1580fa4f54f6285f650e638
Fixed by
0a54917c3fc295cb61f3fb52373c173fd3b69f48
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
More Information

Updated: 2019-12-05 20:56:06 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)