hostapd: fix CVE-2021-30004 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Stefan Ghinea <stefan.ghinea@windriver.com>	2021-04-09 16:12:08 +0300
committer	Armin Kuster <akuster808@gmail.com>	2021-04-18 14:23:26 -0700
commit	730de4763a508234d09c755c838cdc4c8dd49493 (patch)
tree	c8ac3e4046748cec52edaf4552e84b44a3b2731f /meta-python/recipes-devtools/python/python-flask-script.inc
parent	c9815c86bfd63b2d9479915045197e7d315ef709 (diff)
download	meta-openembedded-730de4763a508234d09c755c838cdc4c8dd49493.tar.gz

hostapd: fix CVE-2021-30004

In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. References: https://nvd.nist.gov/vuln/detail/CVE-2021-30004 Upstream patches: https://w1.fi/cgit/hostap/commit/?id=a0541334a6394f8237a4393b7372693cd7e96f15 Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit e2bd6a52bf689b77b237eaee3067d2b0b6eee3d5) Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 98c5cddf677addcb9aa296a7437b92100a478566) Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-flask-script.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: