UbuntuUpdates.org

Package "wpasupplicant"

Name: wpasupplicant

Description:

client support for WPA and WPA2 (IEEE 802.11i)
Latest version: 2:2.10-6ubuntu2.3
Release: jammy (22.04)
Level: updates
Repository: main
Head package: wpa
Homepage: https://w1.fi/wpa_supplicant/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "wpasupplicant"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "wpasupplicant" in Jammy

Repository Area Version
base main 2:2.10-6
security main 2:2.10-6ubuntu2.2

Changelog

Version: 2:2.10-6ubuntu2.3 2025-10-07 12:07:00 UTC

  wpa (2:2.10-6ubuntu2.3) jammy; urgency=medium

  * Bump DEFAULT_BSS_MAX_COUNT to 1000 (LP: #2117180)

 -- Mitchell Augustin <email address hidden> Mon, 21 Jul 2025 18:13:31 -0500
Source diff to previous version
2117180 wpa_supplicant DEFAULT_BSS_MAX_COUNT is too low for populated areas

Version: 2:2.10-6ubuntu2.2 2025-03-04 01:06:56 UTC

  wpa (2:2.10-6ubuntu2.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Encrypted element reusage.
    - debian/patches/CVE-2022-37660.patch: Add hostapd_dpp_pkex_clear_code()
      and wpas_dpp_pkex_clear_code(), and clear code reusage in
      ./src/ap/dpp_hostapd.c and ./wpa_supplicant/dpp_supplicant.c
    - CVE-2022-37660

 -- Hlib Korzhynskyy <email address hidden> Mon, 24 Feb 2025 16:09:28 -0330
Source diff to previous version
CVE-2022-37660 In hostapd 2.10 and earlier, the PKEX code remains active even after a successful PKEX association. An attacker that successfully bootstrapped public

Version: 2:2.10-6ubuntu2.1 2024-08-06 20:07:20 UTC

  wpa (2:2.10-6ubuntu2.1) jammy-security; urgency=medium

  * SECURITY UPDATE: loading arbitrary shared objects, privilege escalation
    - debian/patches/lib_engine_trusted_path.patch: Allow shared objects
      to only be loaded from /usr/lib, thanks to mdeslaur
    - CVE-2024-5290

 -- Sudhakar Verma <email address hidden> Mon, 05 Aug 2024 13:29:26 +0530
Source diff to previous version

Version: 2:2.10-6ubuntu2 2022-06-21 23:06:25 UTC

  wpa (2:2.10-6ubuntu2) jammy; urgency=medium

  * debian/patches/lower_security_level_for_tls_1.patch:
    - set the OpenSSL security level to 0 if that is the only option to
      continue the TLS negotiation, i.e., when TLS 1.0/1.1 are still allowed
      in wpa_supplicant default configuration and OpenSSL 3.0 with the
      constraint on MD5-SHA1 use. Patch proposed by Jouni Malinen on
      the upstream mailinglist (lp: #1958267)

 -- Sebastien Bacher <email address hidden> Fri, 03 Jun 2022 23:28:07 +0200
Source diff to previous version
1958267 wpa can't connect to servers using TLS 1.1 or older

Version: 2:2.10-6ubuntu1 2022-05-17 10:06:30 UTC

  wpa (2:2.10-6ubuntu1) jammy; urgency=medium

  * debian/patches/allow-legacy-renegotiation.patch:
    allow legacy renegotiation to fix PEAP issues with some servers
    (lp: #1962541)

 -- Sebastien Bacher <email address hidden> Thu, 05 May 2022 11:31:26 +0200
1962541 PEAP wifi can't connect (ubuntu live/installer is also not working


About   -   Send Feedback to @ubuntu_updates