You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa hostapd

Sigurnosni nedostatak programskog paketa hostapd

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2014-13778
2014-10-28 05:17:26
——————————————————————————–

Name : hostapd
Product : Fedora 19
Version : 2.0
Release : 5.fc19
URL : http://w1.fi/hostapd
Summary : IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
Description :
hostapd is a user space daemon for access point and authentication servers. It
implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP
Authenticators and RADIUS authentication server.

hostapd is designed to be a “daemon” program that runs in the back-ground and
acts as the backend component controlling authentication. hostapd supports
separate frontend programs and an example text-based frontend, hostapd_cli, is
included with hostapd.

——————————————————————————–
Update Information:

Apply fixes for CVE-2014-3686
——————————————————————————–
ChangeLog:

* Thu Oct 23 2014 John W. Linville <linville@redhat.com> – 2.0-5
– Apply fixes for CVE-2014-3686
* Wed Aug 7 2013 Simone Caronni <negativo17@gmail.com> – 2.0-4
– Add EPEL 6 support.
– Remove obsolete EPEL 5 tags.
– Little spec file formatting.
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 2.0-3
– Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 17 2013 Petr Pisar <ppisar@redhat.com> – 2.0-2
– Perl 5.18 rebuild
——————————————————————————–
References:

[ 1 ] Bug #1151259 – CVE-2014-3686 wpa_supplicant and hostapd: wpa_cli and hostapd_cli remote command execution issue
https://bugzilla.redhat.com/show_bug.cgi?id=1151259
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update hostapd’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2014-13783
2014-10-28 05:17:41
——————————————————————————–

Name : hostapd
Product : Fedora 20
Version : 2.3
Release : 1.fc20
URL : http://w1.fi/hostapd
Summary : IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
Description :
hostapd is a user space daemon for access point and authentication servers. It
implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP
Authenticators and RADIUS authentication server.

hostapd is designed to be a “daemon” program that runs in the back-ground and
acts as the backend component controlling authentication. hostapd supports
separate frontend programs and an example text-based frontend, hostapd_cli, is
included with hostapd.

——————————————————————————–
Update Information:

Security fix for CVE-2014-3686. Update to version 2.3 from upstream
——————————————————————————–
ChangeLog:

* Thu Oct 23 2014 John W. Linville <linville@redhat.com> – 2.3-1
– Update to version 2.3 from upstream
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 2.2-3
– Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 2.2-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu Jun 5 2014 John W. Linville <linville@redhat.com> – 2.2-1
– Update to version 2.2 from upstream
* Sat Feb 22 2014 Simone Caronni <negativo17@gmail.com> – 2.1-2
– Re-enable drivers (#1068849).
* Fri Feb 14 2014 John W. Linville <linville@redhat.com> – 2.1-1
– Update to version 2.1 from upstream
– Remove obsolete patch for libnl build documentation
* Mon Feb 3 2014 Simone Caronni <negativo17@gmail.com> – 2.0-6
– Add libnl build documentation and switch libnl-devel to libnl3-devel build
dependency (#1041471).
* Fri Nov 22 2013 John W. Linville <linville@redhat.com> – 2.0-5
– Enable CONFIG_FULL_DYNAMIC_VLAN build option
——————————————————————————–
References:

[ 1 ] Bug #1151259 – CVE-2014-3686 wpa_supplicant and hostapd: wpa_cli and hostapd_cli remote command execution issue
https://bugzilla.redhat.com/show_bug.cgi?id=1151259
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update hostapd’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

AutorMarko Stanec
Cert idNCERT-REF-2014-11-0023-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Ranjivost programskih paketa qemu i qemu-kvm

Otkrivene su dvije ranjivosti kod programskih paketa qemu i qemu-kvm za Debian. Prva ranjivost očitovala se u načinu kojim je...

Close