hak5
/
openwrt
mirror of https://github.com/hak5/openwrt.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
openwrt/package/network/services
History
Hauke Mehrtens b463a13881 hostapd: fix multiple security problems 
This fixes the following security problems:
* CVE-2019-9494:  cache attack against SAE
* CVE-2019-9495:  cache attack against EAP-pwd
* CVE-2019-9496:  SAE confirm missing state validation in hostapd/AP
* CVE-2019-9497:  EAP-pwd server not checking for reflection attack)
* CVE-2019-9498:  EAP-pwd server missing commit validation for scalar/element
* CVE-2019-9499:  EAP-pwd peer missing commit validation for scalar/element
* CVE-2019-11555: EAP-pwd message reassembly issue with unexpected fragment

Most of these problems are not relevant for normal users, SAE is only
used in ieee80211s mesh mode and EAP-pwd is normally not activated.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
 		2019-06-21 10:29:23 +02:00
..
dnsmasq dnsmasq: prefer localuse over resolvfile guesswork 2019-02-24 01:57:31 +00:00
dropbear dropbear: fix dropbear startup issue 2018-12-21 10:08:12 +01:00
ead network/services/ead: drop Build/Prepare rule in favor of default one 2016-10-15 11:36:52 +02:00
hostapd hostapd: fix multiple security problems 2019-06-21 10:29:23 +02:00
igmpproxy igmpproxy: drop SSDP packets 2018-12-18 10:16:16 +01:00
ipset-dns ipset-dns: bump to git HEAD 2017-10-08 20:51:03 +03:00
lldpd lldpd: inhibit linking of libbsd on !GLIBC 2018-12-18 11:28:13 +01:00
odhcpd odhcpd: fix onlink IA check (FS#2060) 2019-01-16 22:52:46 +01:00
omcproxy omcproxy: silence fw3 warnings 2018-01-10 21:38:55 +01:00
openvpn openvpn: increase procd termination timeout to 15s 2018-12-18 09:47:39 +01:00
openvpn-easy-rsa openvpn-easy-rsa: update to 3.0.4 2018-12-18 10:27:37 +01:00
ppp ppp: remove hardcoded lcp-echo-failure, lcp-echo-interval values 2018-12-18 11:28:12 +01:00
relayd treewide: replace LEDE_GIT with PROJECT_GIT 2018-01-10 21:27:32 +01:00
samba36 samba36: Enable umdnsd support 2018-12-18 11:28:11 +01:00
uhttpd Revert "uhttpd: disable concurrent requests by default" 2019-04-24 10:38:53 +02:00
umdns treewide: replace LEDE_GIT with PROJECT_GIT 2018-01-10 21:27:32 +01:00
wireguard wireguard: bump to 0.0.20190123 2019-01-30 10:55:22 +01:00