CVE-2020-9395 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2020-9395 Interim 1 4 2025-02-17T01:34:42Z current 2021-09-30T01:25:08Z 2025-02-17T01:34:42Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2020-9395 An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EAPOL-Key packet with a long keydata buffer. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed kismet-2021_08_R1-1.2 kismet-capture-bt-geiger-2021_08_R1-1.2 kismet-capture-freaklabs-zigbee-2021_08_R1-1.2 kismet-capture-linux-bluetooth-2021_08_R1-1.2 kismet-capture-linux-wifi-2021_08_R1-1.2 kismet-capture-nrf-51822-2021_08_R1-1.2 kismet-capture-nrf-52840-2021_08_R1-1.2 kismet-capture-nrf-mousejack-2021_08_R1-1.2 kismet-capture-nrf-nxp-kw41z-2021_08_R1-1.2 kismet-capture-rz-killerbee-2021_08_R1-1.2 kismet-capture-sdr-rtl433-2021_08_R1-1.2 kismet-capture-sdr-rtladsb-2021_08_R1-1.2 kismet-capture-sdr-rtlamr-2021_08_R1-1.2 kismet-capture-ti-cc-2531-2021_08_R1-1.2 kismet-capture-ti-cc2540-2021_08_R1-1.2 kismet-devel-2021_08_R1-1.2 kismet-logtools-2021_08_R1-1.2 kismet-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-bt-geiger-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-freaklabs-zigbee-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-linux-bluetooth-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-linux-wifi-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-nrf-51822-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-nrf-52840-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-nrf-mousejack-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-nrf-nxp-kw41z-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-rz-killerbee-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-sdr-rtl433-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-sdr-rtladsb-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-sdr-rtlamr-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-ti-cc-2531-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-capture-ti-cc2540-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-devel-2021_08_R1-1.2 as a component of openSUSE Tumbleweed kismet-logtools-2021_08_R1-1.2 as a component of openSUSE Tumbleweed An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EAPOL-Key packet with a long keydata buffer. CVE-2020-9395 openSUSE Tumbleweed:kismet-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-bt-geiger-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-freaklabs-zigbee-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-linux-bluetooth-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-linux-wifi-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-nrf-51822-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-nrf-52840-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-nrf-mousejack-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-nrf-nxp-kw41z-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-rz-killerbee-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-sdr-rtl433-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-sdr-rtladsb-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-sdr-rtlamr-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-ti-cc-2531-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-capture-ti-cc2540-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-devel-2021_08_R1-1.2 openSUSE Tumbleweed:kismet-logtools-2021_08_R1-1.2 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P 8 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H