oss-sec mailing list archives

Re: hostapd/wpa_supplicant - Incomplete WPS and P2P NFC NDEF record payload length validation

From: Salvatore Bonaccorso <carnil () debian org>
Date: Fri, 30 Oct 2015 19:58:32 +0100

Hi,

On Sun, Aug 16, 2015 at 03:19:53PM +0200, Moritz Muehlenhoff wrote:

Hi,
This doesn't seem to have received a CVE assignment, explicitly
adding cve-assign to CC.

Cheers,
        Moritz

On Wed, Jul 08, 2015 at 05:48:53PM +0300, Jouni Malinen wrote:

Incomplete WPS and P2P NFC NDEF record payload length validation

Published: July 8, 2015
The latest version available from: http://w1.fi/security/2015-5/

[...]

Can a CVE be assigned for the hostapd/wpa_supplicant issue from
http://w1.fi/security/2015-5/ as well?

Regards,
Salvatore

Current thread:

Re: hostapd/wpa_supplicant - Incomplete WPS and P2P NFC NDEF record payload length validation Salvatore Bonaccorso (Oct 30)
- <Possible follow-ups>
- Re: hostapd/wpa_supplicant - Incomplete WPS and P2P NFC NDEF record payload length validation cve-assign (Nov 02)