-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 10 Mar 2020 23:20:17 +0100 Source: wpa Binary: hostapd wpagui wpasupplicant wpasupplicant-udeb Architecture: source amd64 Version: 2.3-1+deb8u10 Distribution: jessie-security Urgency: high Maintainer: Debian wpasupplicant Maintainers <pkg-wpa-devel@lists.alioth.debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: hostapd - IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator wpagui - graphical user interface for wpa_supplicant wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i) wpasupplicant-udeb - Client support for WPA and WPA2 (IEEE 802.11i) (udeb) Changes: wpa (2.3-1+deb8u10) jessie-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2019-10064: Similar to CVE-2016-10743 hostapd in EAP mode used a low quality pseudorandom number generator that leads to insufficient entropy. This was fixed by using the os_get_random function which provides cryptographically strong pseudo random data. Checksums-Sha1: 24d2bd3d2b25178fa06f37077be60e7fc3de7558 2668 wpa_2.3-1+deb8u10.dsc f0bb37f7fa5a5efd3a606b2d4f7b76cd4d182507 107124 wpa_2.3-1+deb8u10.debian.tar.xz 1e5f52f57ae4f4c1cb461842d760e7d45de191db 543072 hostapd_2.3-1+deb8u10_amd64.deb 3348f8bab45adacebd964b41f4807caed644a41f 346864 wpagui_2.3-1+deb8u10_amd64.deb 05dccda6a6687735e3983a8ff9d01d7eac7a3a98 919840 wpasupplicant_2.3-1+deb8u10_amd64.deb 14da3cb5426470743899958c015063cfc078d6be 223204 wpasupplicant-udeb_2.3-1+deb8u10_amd64.udeb Checksums-Sha256: 2f266909c608e3a397ca6993747533e0fdd86aaa3b7fd274452a39b449a6fae1 2668 wpa_2.3-1+deb8u10.dsc 554c075b6ceaff6350ee15cebe5b26ff5b3ff2071fddbaf3fd830844fac71215 107124 wpa_2.3-1+deb8u10.debian.tar.xz bdad9d54bce6462437a5f3230f14c86d3d4ed0cea876c487911e420a326fab26 543072 hostapd_2.3-1+deb8u10_amd64.deb a925a79fc4160adf4e4e24d19b2837ce1b526ae31b2a8441efd4dbc0f4732975 346864 wpagui_2.3-1+deb8u10_amd64.deb 2ddd8919e9487c21703b80981c922e8066c194187b5da80a9ac0a258e3e0485a 919840 wpasupplicant_2.3-1+deb8u10_amd64.deb a895cd835c1adbc03b5dc9d71df5ccc578dfbee2726e7551bcc0b09f709a0bd6 223204 wpasupplicant-udeb_2.3-1+deb8u10_amd64.udeb Files: 776bb4dcb3f781dbc1a27b7c66e51b30 2668 net optional wpa_2.3-1+deb8u10.dsc 9d5110ae806852b5a32f27467f084761 107124 net optional wpa_2.3-1+deb8u10.debian.tar.xz a37b871272d3aeabc5bab2dba262e47d 543072 net optional hostapd_2.3-1+deb8u10_amd64.deb 88def0262e90dc23042f6cb6e9f4eee2 346864 net optional wpagui_2.3-1+deb8u10_amd64.deb 3023c682a6d20a36efd170d8b78466ea 919840 net optional wpasupplicant_2.3-1+deb8u10_amd64.deb d82c78d89247a2d18b4f85ddb9bcd449 223204 debian-installer standard wpasupplicant-udeb_2.3-1+deb8u10_amd64.udeb -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAl5pB19fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkCbgQAKsr2nm7rRftz2HO8D+wi+0rc/h9AJzaZvIE 1N2Qx15U8/mp1jc9NmgTJdHbrJSkPAimSeB3CEtK0vsgDQuG9ZX6sTAcwZZ2fQ5S Mh+yP7ZKe0kPPRuRtWCLTDtLBTL95P/9LUqkSCj9Xyr44YE8wWyEf7+It7aH3SIY auKFs2Ji9ANRk6H45EtLcwgOQdfTFXy28E3c6uB7gmbWeavk+r7Wfvvw3yQi7Q6e CiO9sJ8OqZJbt+Bw6JVXCXi32JhALlTk13NIRO6WX6QWDlQuL9ipVo/TWtFrJOpU wy2JwES2xTnc1afmJMlUwqGz9bCXAn6Yw0KP08ijMnlg7EKpaDVn8Yws1IAgAg+Z PTMe31YozcSgG45ubpr5ydAOGlDbqSANlvCvFwKPRft646Qs0bcHmDindJpfxcka fTNf06j/m0MtdyKCqKm84CUXkGW8rQAlqMH42VvwR1zldu0VP9biZrtobHu0a+Sd MLoL92Ofy0shwxfl+blwloJhHVvSDHj3ptWg53fLdkdRFE0bIYfN/UBA46S0npjw RYVasQ8v5GsLDqvEu+XOjyXsiGXs/frELcpdprarrheSip4sWoHKanrIyoOKCslZ dX0BVWJz5clRFQZXCJil7yGcJM2dYNpvgm4W9CPqUPWZldHxxcEKeJOrMZJbaqhq HkmB+0l6 =951S -----END PGP SIGNATURE-----