Overview

File _patchinfo of Package patchinfo.3820

<patchinfo incident="3820">
  <packager>oertel</packager>
  <issue tracker="bnc" id="930079">VUL-0: CVE-2015-4143: wpa_supplicant: EAP-pwd missing payload length validation</issue>
  <issue tracker="bnc" id="930078">VUL-0: CVE-2015-4142: wpa_supplicant: Integer underflow in AP mode WMM Action frame processing</issue>
  <issue tracker="bnc" id="930077">VUL-0: CVE-2015-4141: wpa_supplicant: WPS UPnP vulnerability with HTTP chunked transfer encoding</issue>
  <issue tracker="cve" id="CVE-2015-4141"></issue>
  <issue tracker="cve" id="CVE-2015-4142"></issue>
  <issue tracker="cve" id="CVE-2015-4143"></issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>Recommended update for wpa_supplicant</summary>
  <description>wpa_supplicant was updated to fix three security issues.

The following vulnerabilities were fixed:

CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding (boo#930077)
CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing (boo#930078)
CVE-2015-4143: EAP-pwd missing payload length validation (boo#930079)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places