rpms/wpa_supplicant
5
0
Fork 0
Code Issues Pull Requests Releases Activity
Unnamed repository
160 Commits 7 Branches 27 Tags 528 KiB
f3c614c6af
Go to file
Davide Caratti f3c614c6af fix SAE and EAP_PWD vulnerabilities 
CVE-2019-9494 (cache attack against SAE)
CVE-2019-9495 (cache attack against EAP-pwd)
CVE-2019-9496 (SAE confirm missing state validation in hostapd/AP)
CVE-2019-9497 (EAP-pwd server not checking for reflection attack)
CVE-2019-9498 (EAP-pwd server missing commit validation for scalar/element)
CVE-2019-9499 (EAP-pwd peer missing commit validation for scalar/element)

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-04-12 12:14:43 +02:00
.gitignore Update to 2.7 upstream release 2018-12-18 17:31:58 +01:00
0001-add-sanity-tests-for-standalone-wpa_supplicant.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0001-dbus-Expose-support-of-SAE-key-management.patch Expose support of SAE key management on D-Bus 2019-01-22 13:05:32 +01:00
0001-OpenSSL-Use-constant-time-operations-for-private-big.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0002-Add-helper-functions-for-constant-time-operations.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0003-OpenSSL-Use-constant-time-selection-for-crypto_bignu.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0004-EAP-pwd-Use-constant-time-and-memory-access-for-find.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0005-SAE-Minimize-timing-differences-in-PWE-derivation.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0006-SAE-Avoid-branches-in-is_quadratic_residue_blind.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0007-SAE-Mask-timing-of-MODP-groups-22-23-24.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0008-SAE-Use-const_time-selection-for-PWE-in-FFC.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0009-SAE-Use-constant-time-operations-in-sae_test_pwd_see.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0010-SAE-Fix-confirm-message-validation-in-error-cases.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0011-EAP-pwd-server-Verify-received-scalar-and-element.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0012-EAP-pwd-server-Detect-reflection-attacks.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0013-EAP-pwd-client-Verify-received-scalar-and-element.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
0014-EAP-pwd-Check-element-x-y-coordinates-explicitly.patch fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
build-config Enable opportunistic encryption 2019-01-22 13:05:07 +01:00
sources Update to 2.7 upstream release 2018-12-18 17:31:58 +01:00
wpa_supplicant-assoc-timeout.patch Update to 0.7.3 2010-12-08 10:33:40 -06:00
wpa_supplicant-dbus-service-file-args.patch Fix systemd startup ordering (rh #815091) 2012-05-01 12:06:05 -05:00
wpa_supplicant-flush-debug-output.patch Update to 0.7.3 2010-12-08 10:33:40 -06:00
wpa_supplicant-gui-qt4.patch Update to version 2.5 2015-10-27 09:08:51 +01:00
wpa_supplicant-quiet-scan-results-message.patch Update to version 2.6 2016-11-22 15:55:13 +01:00
wpa_supplicant.conf - Remove service start requirement for interfaces & devices from sysconfig 2007-08-24 17:40:37 +00:00
wpa_supplicant.logrotate - Fix two leaks when signalling state and scan results (rh #408141) 2007-12-06 23:40:35 +00:00
wpa_supplicant.service Really synchronize the service file with upstream 2015-11-16 18:26:53 +01:00
wpa_supplicant.spec fix SAE and EAP_PWD vulnerabilities 2019-04-12 12:14:43 +02:00
wpa_supplicant.sysconfig Enable syslog by default 2015-10-31 22:12:37 +01:00