cc464da5cb
Fixes the following security vulnerabilities:
EAP-pwd implementation in hostapd (EAP server) and wpa_supplicant (EAP
peer) was discovered not to validate fragmentation reassembly state
properly for a case where an unexpected fragment could be received. This
could result in process termination due to NULL pointer dereference.
For details, see the advisory:
https://w1.fi/security/2019-5/eap-pwd-message-reassembly-issue-with-unexpected-fragment.txt
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| 0001-wpa_supplicant-2.7-fix-undefined-remove-ie.patch | ||
| Config.in | ||
| wpa_supplicant.conf | ||
| wpa_supplicant.hash | ||
| wpa_supplicant.mk | ||