From dca0df99ed63762f428e4c8a05b82ebfd34b8dbf Mon Sep 17 00:00:00 2001 From: John Marino Date: Tue, 2 Jun 2015 09:52:01 +0000 Subject: net/hostapd: Address 3 latest security advisories These are combined upstream patches 2015-2, 2015-3, 2015-4 They address the following security advisories: * CVE-2015-4141 * CVE-2015-4142 * CVE-2015-4143 * CVE-2015-4144 * CVE-2015-4145 * CVE-2015-4146 These advisories also apply to security/wpa_supplicant PR: 200567 Submitted by: Jason Unovitch Approved by: maintainer (Craig Leres) --- net/hostapd/files/patch-src_ap_wmm.c | 12 ++++++++++++ 1 file changed, 12 insertions(+) create mode 100644 net/hostapd/files/patch-src_ap_wmm.c (limited to 'net/hostapd/files/patch-src_ap_wmm.c') diff --git a/net/hostapd/files/patch-src_ap_wmm.c b/net/hostapd/files/patch-src_ap_wmm.c new file mode 100644 index 000000000000..3da758573de3 --- /dev/null +++ b/net/hostapd/files/patch-src_ap_wmm.c @@ -0,0 +1,12 @@ +--- src/ap/wmm.c.orig 2015-03-15 17:30:39 UTC ++++ src/ap/wmm.c +@@ -274,6 +274,9 @@ void hostapd_wmm_action(struct hostapd_d + return; + } + ++ if (left < 0) ++ return; /* not a valid WMM Action frame */ ++ + /* extract the tspec info element */ + if (ieee802_11_parse_elems(pos, left, &elems, 1) == ParseFailed) { + hostapd_logger(hapd, mgmt->sa, HOSTAPD_MODULE_IEEE80211, -- cgit v1.2.3