[ubuntu/wily-security] wpa 2.4-0ubuntu3.2 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Tue Nov 10 17:56:18 UTC 2015

wpa (2.4-0ubuntu3.2) wily-security; urgency=medium

  * SECURITY UPDATE: unauthorized WNM Sleep Mode GTK control
    - debian/patches/CVE-2015-5310.patch: Ignore Key Data in WNM Sleep Mode
      Response frame if no PMF in use in wpa_supplicant/wnm_sta.c.
    - CVE-2015-5310
  * SECURITY UPDATE: EAP-pwd missing last fragment length validation
    - debian/patches/CVE-2015-5315-1.patch: Fix last fragment length
      validation in src/eap_peer/eap_pwd.c.
    - debian/patches/CVE-2015-5315-2.patch: Fix last fragment length
      validation in src/eap_server/eap_server_pwd.c.
    - CVE-2015-5315
  * SECURITY UPDATE: EAP-pwd peer error path failure on unexpected Confirm
    - debian/patches/CVE-2015-5316.patch: fix error path in
    - CVE-2015-5316
  * This package does _not_ contain the changes from 2.4-0ubuntu3.1 in

Date: 2015-11-09 13:48:13.119792+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Wily-changes mailing list