Commit 001f238a authored by Kåre Thor Olsen's avatar Kåre Thor Olsen

[SECURITY] [DSA 3052-1] wpa security update

CVS version numbers

english/security/2014/dsa-3052.data: INITIAL -> 1.1 
english/security/2014/dsa-3052.wml: INITIAL -> 1.1
parent 80fcedff
<define-tag pagetitle>DSA-3052-1 wpa</define-tag>
<define-tag report_date>2014-10-15</define-tag>
<define-tag secrefs>CVE-2014-3686 Bug#765352</define-tag>
<define-tag packages>wpa</define-tag>
<define-tag isvulnerable>yes</define-tag>
<define-tag fixed>yes</define-tag>
<define-tag fixed-section>no</define-tag>
#use wml::debian::security
</dl>
<define-tag description>security update</define-tag>
<define-tag moreinfo>
<p>Jouni Malinen discovered an input sanitization issue in the wpa_cli and
hostapd_cli tools included in the wpa package. A remote wifi system
within range could provide a crafted string triggering arbitrary code
execution running with privileges of the affected wpa_cli or hostapd_cli
process.</p>
<p>For the stable distribution (wheezy), this problem has been fixed in
version 1.0-3+deb7u1.</p>
<p>For the testing distribution (jessie), this problem will be fixed soon.</p>
<p>For the unstable distribution (sid), this problem has been fixed in
version 2.3-1.</p>
<p>We recommend that you upgrade your wpa packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/security/2014/dsa-3052.data"
# $Id$
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment