diff options
| author | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-10-17 12:48:53 +0000 |
|---|---|---|
| committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-10-17 12:51:21 +0000 |
| commit | c98af13227e4a62c1d1098c0f234ba66b12b12eb (patch) | |
| tree | 4c1aa5b367530cc35814a7a05d4749fc455b14ec /main/hostapd/APKBUILD | |
| parent | d9700fde5211ea28dddaf8bc528e44b0dfac9245 (diff) | |
| download | aports-c98af13227e4a62c1d1098c0f234ba66b12b12eb.tar.bz2 aports-c98af13227e4a62c1d1098c0f234ba66b12b12eb.tar.xz | |
main/hostapd: security fixes
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13084 (not applicable)
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
Diffstat (limited to 'main/hostapd/APKBUILD')
| -rw-r--r-- | main/hostapd/APKBUILD | 45 |
1 files changed, 28 insertions, 17 deletions
diff --git a/main/hostapd/APKBUILD b/main/hostapd/APKBUILD index dc7d74b949..4ac414f20c 100644 --- a/main/hostapd/APKBUILD +++ b/main/hostapd/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=hostapd pkgver=2.6 -pkgrel=1 +pkgrel=2 pkgdesc="daemon for wireless software access points" url="http://hostap.epitest.fi/hostapd/" arch="all" @@ -10,21 +10,35 @@ depends= makedepends="libressl-dev libnl3-dev linux-headers" install= subpackages="$pkgname-doc" -patches=" - CVE-2012-4445.patch +patches="CVE-2012-4445.patch libressl-compat.patch + 0001-hostapd-Avoid-key-reinstallation-in-FT-handshake.patch + 0002-Prevent-reinstallation-of-an-already-in-use-group-ke.patch + 0003-Extend-protection-of-GTK-IGTK-reinstallation-of-WNM-.patch + 0004-Prevent-installation-of-an-all-zero-TK.patch + 0005-Fix-PTK-rekeying-to-generate-a-new-ANonce.patch + 0006-TDLS-Reject-TPK-TK-reconfiguration.patch + 0008-FT-Do-not-allow-multiple-Reassociation-Response-fram.patch " - - - source="http://hostap.epitest.fi/releases/$pkgname-$pkgver.tar.gz $patches $pkgname.initd $pkgname.confd" - builddir="$srcdir"/$pkgname-$pkgver/hostapd +# secfixes: +# 2.6-r2: +# - CVE-2017-13077 +# - CVE-2017-13078 +# - CVE-2017-13079 +# - CVE-2017-13080 +# - CVE-2017-13081 +# - CVE-2017-13082 +# - CVE-2017-13086 +# - CVE-2017-13087 +# - CVE-2017-13088 + prepare() { local conf="$builddir/.config" @@ -85,18 +99,15 @@ package() { || return 1 } -md5sums="eaa56dce9bd8f1d195eb62596eab34c7 hostapd-2.6.tar.gz -0d01d4641e0c33f79c1f4372613655bf CVE-2012-4445.patch -a4d1949ad55c3cb6c6f774a95ed6a3c8 libressl-compat.patch -29b561d4ee34dc22a8a0ae0bf1db5c45 hostapd.initd -c91382209042defa04e79d0ae841a29e hostapd.confd" -sha256sums="01526b90c1d23bec4b0f052039cc4456c2fd19347b4d830d1d58a0a6aea7117d hostapd-2.6.tar.gz -06dc7df2159fb0604191f66d35164caa5927963eebe77b5f2c389bd7590e2a49 CVE-2012-4445.patch -663bf347be3d95650be72ac1b465078bccf77cac879ddff05d3989448229c120 libressl-compat.patch -cae79127d088c047c1460d5b63eb67da1a830eb725a8c95e50070e516ad02800 hostapd.initd -6c14e88b14bb9a93d2dca69239d829f435e93180e621319aeed0f3987290dfba hostapd.confd" sha512sums="e60baaa092786250b8de9935f5417c7626f5d749210cce9f83d776b65c19fc92a8141f41923389f05c16295d482a15ae8d8b744f4667425040c99e3c2f5b1bda hostapd-2.6.tar.gz 619acce84516dead1e03e5da71657ea4c4b6f3ca8271574409773aeb316cbddc88095b50320804f457f001f4f3fe83053e660c008d8409f59bb4d3bfe058b601 CVE-2012-4445.patch e6428a7fde025550e8d8252a04dd3a9009f95b6cab064c1f76bf4e5c321bc6acba9a21511e25f996fe98f6c9f1c057bc5af7aa9e6dd19e0bbc537b2be67d494f libressl-compat.patch +f855fa792425f175ccc800eb49df42067b1c1f4b52ba2d24160af4dfbb74dcf8e81661b7e6c8d92fa408938b8a559fc74557d1677913e4a751bfd43706c14bb6 0001-hostapd-Avoid-key-reinstallation-in-FT-handshake.patch +b4e413aa815572ea0002d33d24b69cd499aebb5efebed8fcaade8b29324bb5853a5db64e8b1dfdf24478e02c66196238b81a6ec777a7a28610435dce4d2c344e 0002-Prevent-reinstallation-of-an-already-in-use-group-ke.patch +a6382d8e84b4829be33c46bf2f4c6f3232c9d924a4547a21dfe023bf5be8ee1c635920295f52be285359efaae95bcc1f12b512659cfd1653b871dd0bea7e5ace 0003-Extend-protection-of-GTK-IGTK-reinstallation-of-WNM-.patch +51ed806f0d5b3f588e26d4db4dcfc6be2cfb12002e26893a6cedd62c7cad0d0de75aed4a666223c4877fc1854b08dce6ddf6f6c4cfd752a5d8d58ad4a968b553 0004-Prevent-installation-of-an-all-zero-TK.patch +8707a123cd78149dfee9f5bd791761ee1eca605ef96580167044c2339c896920cf0e030b184a5afa9e310f5755afb30bef8ebd4522fc52753f3fbd6acead2cdf 0005-Fix-PTK-rekeying-to-generate-a-new-ANonce.patch +37d050b2e4a3598484912667d8b2705fbe84c5c562267f900d42b0c7b606fb1fed09ddca8b80e2131768baa8f3690aab6ba7a232dee6ff1e66150fdb8816c927 0006-TDLS-Reject-TPK-TK-reconfiguration.patch +fc84edd8b30305cc42053c872554098f3f077292ec980ed6a442f37884087ff2f055738fd55977ed792bef1887dcc8c4626586465d78dd0258edb83dcd50a65a 0008-FT-Do-not-allow-multiple-Reassociation-Response-fram.patch b54b7c6aa17e5cb86a9b354a516eb2dbefb544df18471339c61d82776de447011a2ac290bea1e6c8beae4b6cebefafb8174683ea42fb773e9e8fe6c679f33ba3 hostapd.initd 0882263bbd7c0b05bf51f51d66e11a23a0b8ca7da2a3b8a30166d2c5f044c0c134e6bccb1d02c9e81819ca8fb0c0fb55c7121a08fe7233ccaa73ff8ab9a238fe hostapd.confd" |