hostapd-2.11-2.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:14890-1 Final 1 1 2025-03-13T00:00:00Z current 2025-03-13T00:00:00Z 2025-03-13T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z hostapd-2.11-2.1 on GA media These are all security issues fixed in the hostapd-2.11-2.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-14890 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2023-52424/ SUSE CVE CVE-2023-52424 page https://www.suse.com/security/cve/CVE-2025-24912/ SUSE CVE CVE-2025-24912 page openSUSE Tumbleweed hostapd-2.11-2.1 hostapd-2.11-2.1 as a component of openSUSE Tumbleweed The IEEE 802.11 standard sometimes enables an adversary to trick a victim into connecting to an unintended or untrusted network with Home WEP, Home WPA3 SAE-loop. Enterprise 802.1X/EAP, Mesh AMPE, or FILS, aka an "SSID Confusion" issue. This occurs because the SSID is not always used to derive the pairwise master key or session keys, and because there is not a protected exchange of an SSID during a 4-way handshake. CVE-2023-52424 openSUSE Tumbleweed:hostapd-2.11-2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-52424.html CVE-2023-52424 https://bugzilla.suse.com/1230626 SUSE Bug 1230626 hostapd fails to process crafted RADIUS packets properly. When hostapd authenticates wi-fi devices with RADIUS authentication, an attacker in the position between the hostapd and the RADIUS server may inject crafted RADIUS packets and force RADIUS authentications to fail. CVE-2025-24912 openSUSE Tumbleweed:hostapd-2.11-2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-24912.html CVE-2025-24912 https://bugzilla.suse.com/1239461 SUSE Bug 1239461