547490 – net-wireless/wpa_supplicant CVE-2015-1863

Bug 547490 - net-wireless/wpa_supplicant CVE-2015-1863

Summary: net-wireless/wpa_supplicant CVE-2015-1863

Status:	RESOLVED DUPLICATE of bug 547492

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2015-04-23 14:56 UTC by Jonas Stein
Modified:	2015-04-23 15:01 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jonas Stein gentoo-dev

2015-04-23 14:56:00 UTC

http://w1.fi/security/2015-1/wpa_supplicant-p2p-ssid-overflow.txt

http://w1.fi/security/2015-1/0001-P2P-Validate-SSID-element-length-before-copying-it-C.patch

Comment 1 Jonas Stein gentoo-dev

2015-04-23 14:57:45 UTC

Vulnerable versions/configurations
wpa_supplicant v1.0-v2.4 with CONFIG_P2P build option enabled

Comment 2 Alex Legler (RETIRED) archtester

2015-04-23 15:01:43 UTC


*** This bug has been marked as a duplicate of bug 547492 ***