Updated: 2019-03-26
CWE: Insufficient Information
Description:
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames.
CVSS3:
OS | Vendor version | Errata |
---|---|---|
RHEL 6 | 2.6.32-71.24.1.el6 | RHSA-2011:0421 |
CentOS 6 | 2.6.32-71.24.1.el6 | CESA-2011:0421 |
CentOS 6 plus | 2.6.32-71.24.1.el6.centos.plus | CESA-2011:0421 |
Scientific 6 | 2.6.32-71.24.1.el6 | CESA-2011:0421 |
OS | Original kernel version | State |
---|---|---|
RHEL 6 | |
Ready For Release |
CentOS 6 | |
Ready For Release |
CentOS 6 plus | |
Ready For Release |
OpenVZ 6 | |
Ready For Release |
Scientific 6 | |
Ready For Release |
OEL 6 Dell | |
Will Not Fix |