[OE-core] [PATCH v2] wpa-supplicant: Fix CVE-2015-4142
Otavio Salvador
otavio at ossystems.com.br
Mon Aug 10 19:08:36 UTC 2015
The original commit "wpa-supplicant: Fix CVE-2015-4142" included the
patch file but didn't apply it into the recipe, so the backport has
not been effective.
Reported-by: Adam Moore <adam.moore at savantsystems.com>
Signed-off-by: Otavio Salvador <otavio at ossystems.com.br>
---
meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.4.bb | 1 +
1 file changed, 1 insertion(+)
diff --git a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.4.bb b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.4.bb
index 0186c2b..a124cf2 100644
--- a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.4.bb
+++ b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.4.bb
@@ -24,6 +24,7 @@ SRC_URI = "http://hostap.epitest.fi/releases/wpa_supplicant-${PV}.tar.gz \
file://wpa_supplicant.conf \
file://wpa_supplicant.conf-sane \
file://99_wpa_supplicant \
+ file://0001-AP-WMM-Fix-integer-underflow-in-WMM-Action-frame-par.patch \
file://0001-P2P-Validate-SSID-element-length-before-copying-it-C.patch \
file://0001-WPS-Fix-HTTP-chunked-transfer-encoding-parser.patch \
file://0001-EAP-pwd-peer-Fix-payload-length-validation-for-Commi.patch \
--
2.5.0
More information about the Openembedded-core
mailing list