[ubuntu/wily-security] wpa 2.4-0ubuntu3.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Tue Nov 10 17:56:18 UTC 2015
wpa (2.4-0ubuntu3.2) wily-security; urgency=medium
* SECURITY UPDATE: unauthorized WNM Sleep Mode GTK control
- debian/patches/CVE-2015-5310.patch: Ignore Key Data in WNM Sleep Mode
Response frame if no PMF in use in wpa_supplicant/wnm_sta.c.
- CVE-2015-5310
* SECURITY UPDATE: EAP-pwd missing last fragment length validation
- debian/patches/CVE-2015-5315-1.patch: Fix last fragment length
validation in src/eap_peer/eap_pwd.c.
- debian/patches/CVE-2015-5315-2.patch: Fix last fragment length
validation in src/eap_server/eap_server_pwd.c.
- CVE-2015-5315
* SECURITY UPDATE: EAP-pwd peer error path failure on unexpected Confirm
message
- debian/patches/CVE-2015-5316.patch: fix error path in
src/eap_peer/eap_pwd.c.
- CVE-2015-5316
* This package does _not_ contain the changes from 2.4-0ubuntu3.1 in
wily-proposed.
Date: 2015-11-09 13:48:13.119792+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/wpa/2.4-0ubuntu3.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Wily-changes
mailing list