projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b33f748) | patch
package/wpa_supplicant: add upstream 2021-1 security fix
authorPeter Korsgaard <peter@korsgaard.com>
Tue, 2 Mar 2021 21:59:43 +0000 (22:59 +0100)
committerYann E. MORIN <yann.morin.1998@free.fr>
Tue, 2 Mar 2021 22:11:25 +0000 (23:11 +0100)
commit9ada4eb2f1c3d67ee49f6f5466738bcd821fc647
treedf74d1b70f582c9dcaa3eaed42961f1e98c8d121tree
parentb33f74823e70f073128762c86e1a8e83ac10d3e1commit | diff
package/wpa_supplicant: add upstream 2021-1 security fix

Fixes the following security issue:

- wpa_supplicant P2P provision discovery processing vulnerability (no CVE
  yet)

A vulnerability was discovered in how wpa_supplicant processes P2P
(Wi-Fi Direct) provision discovery requests. Under a corner case
condition, an invalid Provision Discovery Request frame could end up
reaching a state where the oldest peer entry needs to be removed. With
a suitably constructed invalid frame, this could result in use
(read+write) of freed memory. This can result in an attacker within
radio range of the device running P2P discovery being able to cause
unexpected behavior, including termination of the wpa_supplicant process
and potentially code execution.

For more details, see the advisory:
https://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txt

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
[yann.morin.1998@free.fr: actually add the patch URL to the patch list]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
package/wpa_supplicant/wpa_supplicant.hash diff | blob | history
package/wpa_supplicant/wpa_supplicant.mk diff | blob | history