wpa-supplicant: Fix CVE-2015-4141, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146

wpa-supplicant: backport patch to fix CVE-2015-4141, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146 Backport patch to fix CVE-2015-4141, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146. This patch is originally from: For CVE-2015-4141: http://w1.fi/security/2015-2/0001-WPS-Fix-HTTP-chunked-transfer-encoding-parser.patch For CVE-2015-4143: http://w1.fi/security/2015-4/0001-EAP-pwd-peer-Fix-payload-length-validation-for-Commi.patch http://w1.fi/security/2015-4/0002-EAP-pwd-server-Fix-payload-length-validation-for-Com.patch For CVE-2015-4144 and CVE-2015-4145: http://w1.fi/security/2015-4/0003-EAP-pwd-peer-Fix-Total-Length-parsing-for-fragment-r.patch http://w1.fi/security/2015-4/0004-EAP-pwd-server-Fix-Total-Length-parsing-for-fragment.patch For CVE-2015-4146: http://w1.fi/security/2015-4/0005-EAP-pwd-peer-Fix-asymmetric-fragmentation-behavior.patch (From OE-Core master rev: ce16e95de05db24e4e4132660d793cc7b1d890b9) Signed-off-by: Fan Xin <fan.xin at jp.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Joshua Lock <joshua.lock@collabora.co.uk>
author: Fan Xin <fan.xin@jp.fujitsu.com> 2015-08-05 11:41:32 +0900
committer: Joshua Lock <joshua.lock@collabora.co.uk> 2015-09-01 12:36:15 +0100
commit: b236c0882d62d8aa722117a54c1ff9edec7f5a6d (patch)
tree: 78785f4f2bc835057aebb0b5ccfc8c0b9ef03071 /meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc
parent: 9b3ae2e90f405d3c157d5c3d645b2be6b6216042 (diff)
download: openembedded-core-b236c0882d62d8aa722117a54c1ff9edec7f5a6d.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc
index b3e1465668..1d171ef25a 100644
--- a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc
+++ b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc
@@ -26,6 +26,12 @@ SRC_URI = "http://hostap.epitest.fi/releases/wpa_supplicant-${PV}.tar.gz \
            file://99_wpa_supplicant \
            file://fix-libnl3-host-contamination.patch \
            file://0001-AP-WMM-Fix-integer-underflow-in-WMM-Action-frame-par.patch \
+           file://0001-WPS-Fix-HTTP-chunked-transfer-encoding-parser.patch \
+           file://0001-EAP-pwd-peer-Fix-payload-length-validation-for-Commi.patch \
+           file://0002-EAP-pwd-server-Fix-payload-length-validation-for-Com.patch \
+           file://0003-EAP-pwd-peer-Fix-Total-Length-parsing-for-fragment-r.patch \
+           file://0004-EAP-pwd-server-Fix-Total-Length-parsing-for-fragment.patch \
+           file://0005-EAP-pwd-peer-Fix-asymmetric-fragmentation-behavior.patch \
           "
 SRC_URI[md5sum] = "f2ed8fef72cf63d8d446a2d0a6da630a"
 SRC_URI[sha256sum] = "eaaa5bf3055270e521b2dff64f2d203ec8040f71958b8588269a82c00c9d7b6a"
author	Fan Xin <fan.xin@jp.fujitsu.com>	2015-08-05 11:41:32 +0900
committer	Joshua Lock <joshua.lock@collabora.co.uk>	2015-09-01 12:36:15 +0100
commit	b236c0882d62d8aa722117a54c1ff9edec7f5a6d (patch)
tree	78785f4f2bc835057aebb0b5ccfc8c0b9ef03071 /meta/recipes-connectivity/wpa-supplicant/wpa-supplicant.inc
parent	9b3ae2e90f405d3c157d5c3d645b2be6b6216042 (diff)
download	openembedded-core-b236c0882d62d8aa722117a54c1ff9edec7f5a6d.tar.gz