Debian Package Tracker

From: Andrew Shadura <andrewsh@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted wpa 2.3-1+deb8u4 (source) into proposed-updates->stable-new, proposed-updates
Date: Mon, 01 Aug 2016 18:47:11 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 21 Jul 2016 09:01:51 +0200
Source: wpa
Binary: hostapd wpagui wpasupplicant wpasupplicant-udeb
Architecture: source
Version: 2.3-1+deb8u4
Distribution: jessie
Urgency: medium
Maintainer: Debian wpasupplicant Maintainers <pkg-wpa-devel@lists.alioth.debian.org>
Changed-By: Andrew Shadura <andrewsh@debian.org>
Description:
 hostapd    - IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator
 wpagui     - graphical user interface for wpa_supplicant
 wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i)
 wpasupplicant-udeb - Client support for WPA and WPA2 (IEEE 802.11i) (udeb)
Closes: 823411
Changes:
 wpa (2.3-1+deb8u4) jessie; urgency=medium
 .
   * Non-maintainer upload.
   * Add patches to address CVE-2016-4476 and CVE-2016-4477, thanks to
     Salvatore Bonaccorso <carnil@debian.org> (Closes: #823411):
     - WPS: Reject a Credential with invalid passphrase
     - Reject psk parameter set with invalid passphrase character
     - Remove newlines from wpa_supplicant config network output
     - Reject SET_CRED commands with newline characters in the string values
     - Reject SET commands with newline characters in the string values
   * Refresh patches to apply cleanly.
Checksums-Sha1:
 3d8598e48cbfa09a46d68ccd0165b0a65567b72e 2148 wpa_2.3-1+deb8u4.dsc
 43574461597b18eaf8cfb41a54bd3f7bf3a2283c 84096 wpa_2.3-1+deb8u4.debian.tar.xz
Checksums-Sha256:
 6efd60b178ed0f5d177bad3d68c3725e14bc64ecffbcf480a38d7b19e7b64994 2148 wpa_2.3-1+deb8u4.dsc
 34d34610a870cb14f5e09c78ebb670711d46547fda4e999a2fd06cb0f2ba0f91 84096 wpa_2.3-1+deb8u4.debian.tar.xz
Files:
 41b2fb9bbff9785dad5225b281d53d40 2148 net optional wpa_2.3-1+deb8u4.dsc
 5aab1dbdf856373df095350e4d58a3ce 84096 net optional wpa_2.3-1+deb8u4.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJXmkoQAAoJEJ1bI/kYT6UUGGwH/2utA/YZSAGryTC9hPPvCpio
Fca2qOYhQNad2u6j4eHdlhJfDxDJdsErEgzMR5Zl4C2y/shb/wKSZCvY9ZBOrWNe
g9trgLrW0b+xhC4+r984pw+Jcj2HlfoX63bOlZq43fCm7fn+S0x78mbsEgIgE1Ni
JS8njcK/xrHsMZHtxxsBBPq1ZOOt0qO4ocgnbNlVj1hqeszgShWtzjv4y2C6gKhO
jIO7ywxs/DbIrOZoMV8wBcF3IINSxs18kNrsPj0TeneGi2cofOZCsQ7MFRetcI+z
/peJunl5zK3uo37Z64h2pZpG7brViFR4Td9QrBRGeEr0wWHELrGJNbrQrPa6Ytk=
=6+Rk
-----END PGP SIGNATURE-----

News for package wpa