[ubuntu/trusty-security] wpa 2.1-0ubuntu1.4 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Tue Nov 10 17:56:18 UTC 2015


wpa (2.1-0ubuntu1.4) trusty-security; urgency=medium

  * SECURITY UPDATE: unauthorized WNM Sleep Mode GTK control
    - debian/patches/CVE-2015-5310.patch: Ignore Key Data in WNM Sleep Mode
      Response frame if no PMF in use in wpa_supplicant/wnm_sta.c.
    - CVE-2015-5310
  * SECURITY UPDATE: EAP-pwd missing last fragment length validation
    - debian/patches/CVE-2015-5315-1.patch: Fix last fragment length
      validation in src/eap_peer/eap_pwd.c.
    - debian/patches/CVE-2015-5315-2.patch: Fix last fragment length
      validation in src/eap_server/eap_server_pwd.c.
    - CVE-2015-5315

Date: 2015-11-09 13:43:14.156280+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/wpa/2.1-0ubuntu1.4
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list