[ubuntu/xenial-security] wpa 2.4-0ubuntu6.7 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Feb 11 20:20:39 UTC 2021
wpa (2.4-0ubuntu6.7) xenial-security; urgency=medium
* SECURITY UPDATE: P2P discovery heap overflow
- debian/patches/CVE-2021-0326.patch: P2P: Fix copying of secondary
device types for P2P group client
- CVE-2021-0326
* SECURITY UPDATE: UPnP SUBSCRIBE misbehavior in WPS AP
- debian/patches/CVE-2020-12695-1.patch: WPS UPnP: Do not allow
event subscriptions with URLs to other networks
- debian/patches/CVE-2020-12695-2.patch: WPS UPnP: Fix event message
generation using a long URL path
- debian/patches/CVE-2020-12695-3.patch: WPS UPnP: Handle HTTP
initiation failures for events more properly
- CVE-2020-12695
Date: 2021-02-10 06:51:09.804114+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/wpa/2.4-0ubuntu6.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list