[Bug 217907] [PATCH] net/hostapd: Update to 2.6, fixes multiple vulnerabilities
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sun Mar 19 01:25:16 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=217907
Bug ID: 217907
Summary: [PATCH] net/hostapd: Update to 2.6, fixes multiple
vulnerabilities
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Keywords: patch
Severity: Affects Only Me
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: leres at ee.lbl.gov
Keywords: patch
Update to 2.6. Security vulnerabilities fixed:
- fixed EAP-pwd last fragment validation
[http://w1.fi/security/2015-7/] (CVE-2015-5314)
- fixed WPS configuration update vulnerability with malformed passphrase
[http://w1.fi/security/2016-1/] (CVE-2016-4476)
Detailed changes can be found here:
https://w1.fi/cgit/hostap/plain/hostapd/ChangeLog
Important: Please delete this obsolete patch file:
files/patch-src_crypto_tls__openssl.c
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list