From 060587ae477d785db017f4d8a2152206c258da42 Mon Sep 17 00:00:00 2001 From: Martin Jansa Date: Sat, 20 Mar 2021 09:12:22 +0100 Subject: wpa-supplicant: update CVE-2021-27803.patch * update to match what was merged in master branch (and I have now sent for gatesgarth) * fixes Upstream-Status (there is a missing 'c' in 'Acepted' and 'Backport' is more accurate) Signed-off-by: Martin Jansa Signed-off-by: Steve Sakoman --- .../wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch index dc576d1a11..004b1dbd19 100644 --- a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch +++ b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch @@ -18,15 +18,19 @@ p2p_add_device() so that the stale pointer cannot be used. Fixes: 17bef1e97a50 ("P2P: Add peer entry based on Provision Discovery Request") Signed-off-by: Jouni Malinen -Upstream-Status: Acepted [https://w1.fi/cgit/hostap/commit/?id=8460e3230988ef2ec13ce6b69b687e941f6cdb32] +Upstream-Status: Backport CVE: CVE-2021-27803 -Signed-off-by: Minjae Kim + +Reference to upstream patch: +[https://w1.fi/cgit/hostap/commit/?id=8460e3230988ef2ec13ce6b69b687e941f6cdb32] + +Signed-off-by: Stefan Ghinea --- src/p2p/p2p_pd.c | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) diff --git a/src/p2p/p2p_pd.c b/src/p2p/p2p_pd.c -index 3994ec03f86b..05fd593494ef 100644 +index 3994ec0..05fd593 100644 --- a/src/p2p/p2p_pd.c +++ b/src/p2p/p2p_pd.c @@ -595,14 +595,12 @@ void p2p_process_prov_disc_req(struct p2p_data *p2p, const u8 *sa, @@ -50,5 +54,5 @@ index 3994ec03f86b..05fd593494ef 100644 } else if (msg.wfd_subelems) { wpabuf_free(dev->info.wfd_subelems); -- -2.25.1 +2.17.1 -- cgit 1.2.3-korg