lp://staging/ubuntu/vivid-updates/wpa

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

20. By Marc Deslauriers on 2015-06-15

* SECURITY UPDATE: denial of service via WPS UPnP
  - debian/patches/CVE-2015-4141.patch: check chunk size in
    src/wps/httpread.c.
  - CVE-2015-4141
* SECURITY UPDATE: denial of service via AP mode WMM Action frame
  - debian/patches/CVE-2015-4142.patch: check length in src/ap/wmm.c.
  - CVE-2015-4142
* SECURITY UPDATE: denial of service via EAP-pwd
  - debian/patches/CVE-2015-4143-4146.patch: check lengths in
    src/eap_peer/eap_pwd.c, src/eap_server/eap_server_pwd.c.
  - CVE-2015-4143
  - CVE-2015-4144
  - CVE-2015-4145
  - CVE-2015-4146

19. By Marc Deslauriers on 2015-04-20

* SECURITY UPDATE: memcpy overflow in P2P functionality
  - debian/patches/CVE-2015-1863.patch: validate SID element length in
    src/p2p/p2p.c.
  - CVE-2015-1863

18. By Martin Pitt on 2015-03-27

Cherry-pick from Debian svn:
Add wpasupplicant_fix-systemd-unit-dependencies.patch: Fix systemd unit
dependencies for wpasupplicant, it needs to be started before the network
target (Closes: 780552, LP: #1431774).

17. By Mathieu Trudel-Lapierre on 2014-12-19

debian/patches/dbus-available-sta.patch: Make the list of connected
stations available on DBus for hotspot mode; along with some of the
station properties, such as rx/tx packets, bytes, capabilities, etc.

16. By Mathieu Trudel-Lapierre on 2014-12-08

* debian/patches/android_hal_fw_path_change.patch: add a DBus method for
  requesting a firmware change when working with the Android HAL; this is
  used to set a device in P2P or AP mode; conditional to CONFIG_ANDROID_HAL
  being enabled.
* debian/config/wpasupplicant/linux: enable CONFIG_ANDROID_HAL.
* debian/control: Build-Depends on android-headers to get the required wifi
  headers for the HAL support.

15. By Marc Deslauriers on 2014-10-10

* SECURITY UPDATE: arbitrary command execution via unsanitized string
  passed to action scripts by wpa_cli and hostapd_cli
  - debian/patches/CVE-2014-3686.patch: added os_exec() helper to
    src/utils/os.h, src/utils/os_unix.c, src/utils/os_win32.c,
    use instead of system() in wpa_supplicant/wpa_cli.c,
    hostapd/hostapd_cli.c.
  - CVE-2014-3686

14. By Mathieu Trudel-Lapierre on 2014-09-22

debian/patches/git_update_scan_res_for_apscan_1_068e3877.patch: update
scan results when using ap_scan=1; this avoids 4-way handshake failures
while roaming. (LP: #1348105)

13. By Colin Watson on 2014-07-26

No-change rebuild with pkg-create-dbgsym 0.65 so that the full set of
debug symbol packages are generated.

12. By Mathieu Trudel-Lapierre on 2014-03-04

* New upstream release (LP: #1099755)
* debian/get-orig-source: update for new git repository for the current
  hostap/wpasupplicant versions.
* Dropped patches due to being applied upstream and included in the current
  source tarball:
  - debian/patches/11_wpa_gui_ftbfs_gcc_4_7.patch
  - debian/patches/13_human_readable_signal.patch
  - debian/patches/git_deinit_p2p_context_on_mgmt_remove_ff1f9c8.patch
  - debian/patches/libnl3-includes.patch
* debian/patches/git_accept_client_cert_from_server.patch: revert the commit:
  "OpenSSL: Do not accept SSL Client certificate for server", which breaks
  many AAA servers that include both client and server EKUs. Cherry-picked
  from hostap git commit b62d5b5.

11. By Mathieu Trudel-Lapierre on 2013-11-18

debian/patches/git_deinit_p2p_context_on_mgmt_remove_ff1f9c8.patch:
deinitialize the P2P context when the management interface gets removed for
whatever reason, such as a suspend/resume cycle. (LP: #1210785)