diff options
author | Petr Štetiar <ynezz@true.cz> | 2020-06-08 17:35:32 +0200 |
---|---|---|
committer | Petr Štetiar <ynezz@true.cz> | 2020-06-09 16:59:33 +0200 |
commit | df6a33a8d4115fcb7edd048f7dbfea054e9477b4 (patch) | |
tree | efbe623806ba2c24f7e021f40bde7ca659d25c70 /package/network/services/hostapd/patches/360-ctrl_iface_reload.patch | |
parent | 22468cc40c8b6ff5ff020b3c6468e07cbd5bb722 (diff) | |
download | upstream-df6a33a8d4115fcb7edd048f7dbfea054e9477b4.tar.gz upstream-df6a33a8d4115fcb7edd048f7dbfea054e9477b4.tar.bz2 upstream-df6a33a8d4115fcb7edd048f7dbfea054e9477b4.zip |
hostapd: update to latest Git hostap_2_9-1331-g5a8b366233f5
Bump to latest Git and refresh all patches in order to get fix for "UPnP
SUBSCRIBE misbehavior in hostapd WPS AP" (CVE-2020-12695).
General security vulnerability in the way the callback URLs in the UPnP
SUBSCRIBE command are used were reported (VU#339275, CVE-2020-12695).
Some of the described issues may be applicable to the use of UPnP in WPS
AP mode functionality for supporting external registrars.
Ref: https://w1.fi/security/2020-1/
Signed-off-by: Petr Štetiar <ynezz@true.cz>
Diffstat (limited to 'package/network/services/hostapd/patches/360-ctrl_iface_reload.patch')
-rw-r--r-- | package/network/services/hostapd/patches/360-ctrl_iface_reload.patch | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/network/services/hostapd/patches/360-ctrl_iface_reload.patch b/package/network/services/hostapd/patches/360-ctrl_iface_reload.patch index 7692a29157..31c5102cb1 100644 --- a/package/network/services/hostapd/patches/360-ctrl_iface_reload.patch +++ b/package/network/services/hostapd/patches/360-ctrl_iface_reload.patch @@ -78,7 +78,7 @@ #ifdef NEED_AP_MLME static int hostapd_ctrl_iface_sa_query(struct hostapd_data *hapd, -@@ -3527,6 +3584,8 @@ static int hostapd_ctrl_iface_receive_pr +@@ -3546,6 +3603,8 @@ static int hostapd_ctrl_iface_receive_pr } else if (os_strncmp(buf, "VENDOR ", 7) == 0) { reply_len = hostapd_ctrl_iface_vendor(hapd, buf + 7, reply, reply_size); |