SUSE-SU-2015:2221-1 -- SLES wpa_supplicantID: oval:org.secpod.oval:def:89045408 | Date: (C)2021-08-04 (M)2022-09-22 |
Class: PATCH | Family: unix |
wpa_supplicant was updated to fix two security issues. These security issues were fixed: - CVE-2015-4142: Integer underflow in the WMM Action frame parser in hostapd and wpa_supplicant, when used for AP mode MLME/SME functionality, allowed remote attackers to cause a denial of service via a crafted frame, which triggers an out-of-bounds read . - CVE-2015-4141: The WPS UPnP function in hostapd, when using WPS AP, and wpa_supplicant, when using WPS external registrar , allowed remote attackers to cause a denial of service via a negative chunk length, which triggered an out-of-bounds read or heap-based buffer overflow .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |