Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Fedora 20: 2015-8386 Critical Issue: Integer Underflow in hostapd

fedora
Calendar Grey May 27, 2015
Dist Fedora Esm H88
Important hostapd patch to address integer overflow flaw in Fedora 20, improving safety for wireless network administration.
Security update for integer underflow in AP mode WMM Action frame processing.

Summary

hostapd is a user space daemon for access point and authentication servers. It

implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP

Authenticators and RADIUS authentication server.

hostapd is designed to be a "daemon" program that runs in the back-ground and

acts as the backend component controlling authentication. hostapd supports

separate frontend programs and an example text-based frontend, hostapd_cli, is

included with hostapd.

Update Information:

Security update for integer underflow in AP mode WMM Action frame processing.

Topics%20covered

Topics Covered

security advisory fedora critical hostapd integer underflow access point WMM frame

Change Log

* Fri May 15 2015 John W. Linville - 2.4-2 - apply fix for underflow in WMM action frame parser * Tue Apr 21 2015 John W. Linville - 2.4-1 - Update to version 2.4 from upstream - Enable support for IEEE802.11r and IEEE802.11ac * Wed Feb 4 2015 John W. Linville - 2.3-4 - Use BSD instead of %doc for file containing license information * Sun Nov 2 2014 poma - 2.3-3 - Further simplify hostapd.conf installation - Rebase "EAP-TLS server" patch to 2.3 * Tue Oct 28 2014 John W. Linville - 2.3-2 - Remove version info from /usr/share/doc/hostapd/hostapd.conf * Thu Oct 23 2014 John W. Linville - 2.3-1 - Update to version 2.3 from upstream * Sat Aug 16 2014 Fedora Release Engineering - 2.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering - 2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Jun 5 2014 John W. Linville - 2.2-1 - Update to version 2.2 from upstream * Sat Feb 22 2014 Simone Caronni - 2.1-2 - Re-enable drivers (#1068849). * Fri Feb 14 2014 John W. Linville - 2.1-1 - Update to version 2.1 from upstream - Remove obsolete patch for libnl build documentation * Mon Feb 3 2014 Simone Caronni - 2.0-6 - Add libnl build documentation and switch libnl-devel to libnl3-devel build dependency (#1041471). * Fri Nov 22 2013 John W. Linville - 2.0-5 - Enable CONFIG_FULL_DYNAMIC_VLAN build option

References


[ 1 ] Bug #1221178 - wpa_supplicant and hostapd: integer underflow in AP mode WMM Action frame processing https://bugzilla.redhat.com/show_bug.cgi?id=1221178

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update hostapd' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: hostapd
Product: Fedora 20
Version: 2.4
Release: 2.fc20
URL: http://w1.fi/hostapd/
Summary: IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator

Topics%20covered

Topics Covered

security advisory fedora critical hostapd integer underflow access point WMM frame

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here