wpa (2:2.10-6ubuntu2.2) jammy-security; urgency=medium
* SECURITY UPDATE: Encrypted element reusage.
- debian/patches/CVE-2022-37660.patch: Add hostapd_dpp_pkex_clear_code()
and wpas_dpp_pkex_clear_code(), and clear code reusage in
./src/ap/dpp_hostapd.c and ./wpa_supplicant/dpp_supplicant.c
- CVE-2022-37660
-- Hlib Korzhynskyy <hlib.korzhynskyy@canonical.com> Mon, 24 Feb 2025 16:09:28 -0330
wpa (2:2.10-6ubuntu2.1) jammy-security; urgency=medium
* SECURITY UPDATE: loading arbitrary shared objects, privilege escalation
- debian/patches/lib_engine_trusted_path.patch: Allow shared objects
to only be loaded from /usr/lib, thanks to mdeslaur
- CVE-2024-5290
-- Sudhakar Verma <sudhakar.verma@canonical.com> Mon, 05 Aug 2024 13:29:26 +0530
wpa (2:2.10-6ubuntu2) jammy; urgency=medium
* debian/patches/lower_security_level_for_tls_1.patch:
- set the OpenSSL security level to 0 if that is the only option to
continue the TLS negotiation, i.e., when TLS 1.0/1.1 are still allowed
in wpa_supplicant default configuration and OpenSSL 3.0 with the
constraint on MD5-SHA1 use. Patch proposed by Jouni Malinen on
the upstream mailinglist (lp: #1958267)
-- Sebastien Bacher <seb128@ubuntu.com> Fri, 03 Jun 2022 23:28:07 +0200
wpa (2:2.10-6ubuntu1) jammy; urgency=medium
* debian/patches/allow-legacy-renegotiation.patch:
allow legacy renegotiation to fix PEAP issues with some servers
(lp: #1962541)
-- Sebastien Bacher <seb128@ubuntu.com> Thu, 05 May 2022 11:31:26 +0200
wpa (2:2.10-6) unstable; urgency=medium
* Link against dl on kFreeBSD.
-- Andrej Shadura <andrewsh@debian.org> Mon, 04 Apr 2022 15:04:12 +0200
wpa (2:2.10-5) unstable; urgency=medium
* Synchronise build configs with defconfigs.
* Disable options not compilable on kFreeBSD in kFreeBSD builds.
-- Andrej Shadura <andrewsh@debian.org> Mon, 04 Apr 2022 13:59:59 +0200
wpa (2:2.10-4) unstable; urgency=medium
* Skip GUI build on kFreeBSD, not Hurd.
-- Andrej Shadura <andrewsh@debian.org> Sat, 02 Apr 2022 17:25:31 +0200
wpa (2:2.10-3) unstable; urgency=medium
[ Andrej Shadura ]
* Bump debhelper from old 12 to 13.
* Avoid explicitly specifying -Wl,--as-needed linker flag.
* Drop dh-exec usage, dh 13 supports substitutions natively.
* Re-enable WEP (Closes: #1006366).
* Remove constraints unnecessary since buster.
* Clean up compiler flags.
* Don’t build the GUI on kFreeBSD since Qt 5 is uninstallable.
* Add sync-config script to simplify synchronising configuration.
* Explicitly undefine options we want to disable.
[ Thomas Glanzmann ]
* Replace the wheel group with netdev in the manpage
(Closes: #1005639).
-- Andrej Shadura <andrewsh@debian.org> Sat, 02 Apr 2022 15:30:45 +0200
wpa (2:2.10-2) unstable; urgency=medium
[ Ryutaroh Matsumoto ]
* Add reload support to the systemd unit files (Closes: #931554).
[ Michael Yartys ]
* Enable OCV in compile-time config.
[ Andrej Shadura ]
* Apply an upstream patch to fix broadcom-wl (Closes: #1004524).
Thanks to David Bauer for the patch.
-- Andrej Shadura <andrewsh@debian.org> Wed, 02 Feb 2022 01:14:41 +0100
wpa (2:2.10-1) unstable; urgency=medium
* Upload to unstable.
* New upstream release.
-- Andrej Shadura <andrewsh@debian.org> Mon, 17 Jan 2022 10:30:13 +0100
# For older changelog entries, run 'apt-get changelog wpasupplicant'
Generated by dwww version 1.14 on Mon Apr 7 13:25:56 CEST 2025.