Recommended update for wpa_supplicant
wpa_supplicant was updated to fix three security issues.
The following vulnerabilities were fixed:
CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding (boo#930077)
CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing (boo#930078)
CVE-2015-4143: EAP-pwd missing payload length validation (boo#930079)
-
Submitted by
Ruediger Oertel (oertel)
Fixed bugs
bnc#930079
VUL-0: CVE-2015-4143: wpa_supplicant: EAP-pwd missing payload length validation
bnc#930078
VUL-0: CVE-2015-4142: wpa_supplicant: Integer underflow in AP mode WMM Action frame processing
bnc#930077
VUL-0: CVE-2015-4141: wpa_supplicant: WPS UPnP vulnerability with HTTP chunked transfer encoding
