Comparing changes
Open a pull request
- 7 commits
- 4 files changed
- 4 contributors
Commits on Apr 24, 2020
-
skypeforlinux: 8.56.0.103 -> 8.58.0.93
Cherry-picked 36c7dc2 Original commit merged in PR NixOS/nixpkgs#83355
Commits on Apr 25, 2020
-
linux_5_5: throw a meaningful error instead of just removing the attr…
…ibute I was using a 5.5 kernel on NixOS 20.03 and got an "attribute not found" error yesterday when trying to update my system. In order to understand why, I had to look up what happened in the `git log` which is IMHO not a good experience for e.g. a beginner.
-
hostapd: apply patch for CVE-2019-16275
AP mode PMF disconnection protection bypass Published: September 11, 2019 Identifiers: - CVE-2019-16275 Latest version available from: https://w1.fi/security/2019-7/ Vulnerability hostapd (and wpa_supplicant when controlling AP mode) did not perform sufficient source address validation for some received Management frames and this could result in ending up sending a frame that caused associated stations to incorrectly believe they were disconnected from the network even if management frame protection (also known as PMF) was negotiated for the association. This could be considered to be a denial of service vulnerability since PMF is supposed to protect from this type of issues. It should be noted that if PMF is not enabled, there would be no protocol level protection against this type of denial service attacks. An attacker in radio range of the access point could inject a specially constructed unauthenticated IEEE 802.11 frame to the access point to cause associated stations to be disconnected and require a reconnection to the network. Vulnerable versions/configurations All hostapd and wpa_supplicants versions with PMF support (CONFIG_IEEE80211W=y) and a runtime configuration enabled AP mode with PMF being enabled (optional or required). In addition, this would be applicable only when using user space based MLME/SME in AP mode, i.e., when hostapd (or wpa_supplicant when controlling AP mode) would process authentication and association management frames. This condition would be applicable mainly with drivers that use mac80211. Possible mitigation steps - Merge the following commit to wpa_supplicant/hostapd and rebuild: AP: Silently ignore management frame from unexpected source address This patch is available from https://w1.fi/security/2019-7/ - Update to wpa_supplicant/hostapd v2.10 or newer, once available (cherry picked from commit 3e9f3a3)
-
Merge pull request #85990 from Ma27/linux-5.5-eval-error
[20.03] linux_5_5: throw a meaningful error instead of just removing the attribute
-
Merge pull request #86000 from mweinelt/20.03/hostapd/cve-2019-16275
[20.03] hostapd: apply patch for CVE-2019-16275
-
Merge pull request #85854 from emmanuelrosa/skype-dep-8.56
skypeforlinux: 8.55.0.141 -> 8.56.0.103
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff 915d2c3e69ca...4786f8e5b73f