Debian Package Tracker

From: Andrew Shadura <andrewsh@debian.org>
To: <debian-experimental-changes@lists.debian.org> , <debian-devel-changes@lists.debian.org>
Subject: Accepted wpa 2:2.6-5 (source) into experimental
Date: Fri, 20 Oct 2017 15:21:03 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 20 Oct 2017 15:34:09 +0100
Source: wpa
Binary: hostapd wpagui wpasupplicant wpasupplicant-udeb
Architecture: source
Version: 2:2.6-5
Distribution: experimental
Urgency: medium
Maintainer: Debian wpasupplicant Maintainers <pkg-wpa-devel@lists.alioth.debian.org>
Changed-By: Andrew Shadura <andrewsh@debian.org>
Description:
 hostapd    - IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator
 wpagui     - graphical user interface for wpa_supplicant
 wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i)
 wpasupplicant-udeb - Client support for WPA and WPA2 (IEEE 802.11i) (udeb)
Changes:
 wpa (2:2.6-5) experimental; urgency=medium
 .
   [ Yves-Alexis Perez ]
   * Fix multiple issues in WPA protocol (CVE-2017-13077, CVE-2017-13078,
     CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082,
     CVE-2017-13086, CVE-2017-13087, CVE-2017-13088):
     - hostapd: Avoid key reinstallation in FT handshake
     - Prevent reinstallation of an already in-use group key
     - Extend protection of GTK/IGTK reinstallation of
     - Fix TK configuration to the driver in EAPOL-Key 3/4
     - Prevent installation of an all-zero TK
     - Fix PTK rekeying to generate a new ANonce
     - TDLS: Reject TPK-TK reconfiguration
     - WNM: Ignore WNM-Sleep Mode Response if WNM-Sleep Mode
     - WNM: Ignore WNM-Sleep Mode Response without pending
     - FT: Do not allow multiple Reassociation Response frames
     - TDLS: Ignore incoming TDLS Setup Response retries
Checksums-Sha1:
 76d31accba9913df020ca8cdf296306a63b231ca 2230 wpa_2.6-5.dsc
 19a74488d82e69e6c9466b252e651f13eb096f12 90484 wpa_2.6-5.debian.tar.xz
Checksums-Sha256:
 951b8ba68758b174134cde1be63afef868901f152b8f8c64192998871944e1ca 2230 wpa_2.6-5.dsc
 57f6e7c2c4ad739722aedd13321f47a7a7b4e916e34e6eb4620a5bf49b3cebb3 90484 wpa_2.6-5.debian.tar.xz
Files:
 3922a40f1c3951b94e5bad03a96422b1 2230 net optional wpa_2.6-5.dsc
 8b613acfc9113665789200a83ee31a21 90484 net optional wpa_2.6-5.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQEcBAEBCAAGBQJZ6hBLAAoJEJ1bI/kYT6UUUr0H/jENgJ5qKXHEl6MVaErwWWYN
CuYUIU70dmcjnxKSr+pWeh1/A+m5yGHV1PG48k+az9XiqeBN8ceRyldeJvDWQmGZ
lU0kzy1rFCFXHV07xDWmaEKM1v63BFVMpUlAJEgkZV44e4OHzfjnlVy8J+m37e8B
cAGdIcmCAV0wt9jo2mRKVwKqZHczufN8wIO4wQ2jeZtVFLBaUXz8piKbjClVNv/e
68qqOeXTRzyycPJooc+THJ/vqiJfLtOGcVdhKMcvUjQviyLuu9gWlQWLBwdf4ups
0Tof7o+47pS51kcy2pbuYS7ntOPm2IktlFvxrFx9Setp+UD94gtcTaOiHVH09Z8=
=0HjH
-----END PGP SIGNATURE-----

News for package wpa