FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wpa_supplicant -- WPS_NFC option payload length validation vulnerability

Affected packages
wpa_supplicant < 2.4_4

Details

VuXML ID c93c9395-25e1-11e5-a4a5-002590263bf5
Discovery 2015-07-08
Entry 2015-07-09
Modified 2015-11-10

Jouni Malinen reports:

Incomplete WPS and P2P NFC NDEF record payload length validation. (2015-5)

References

CVE Name CVE-2015-8041
URL http://w1.fi/security/2015-5/incomplete-wps-and-p2p-nfc-ndef-record-payload-length-validation.txt