hostapd

In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c.

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a...

A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep...

A vulnerability has been discovered that allows reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame.

A vulnerability has been discovered that allows reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake.

A vulnerability has been discovered that allows reinstallation of the short term key (STK) in the PeerKey handshake.

A vulnerability has been discovered that allows accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key (PTK) while processing it.

A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) in the group key handshake.

A vulnerability has been discovered that allows reinstallation of the group key (GTK) in the group key handshake.

A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) in the 4-way handshake.

A vulnerability has been discovered that allows reinstallation of the group key (GTK) in the 4-way handshake.

A vulnerability has been discovered that allows reinstallation of the pairwise encryption key (PTK-TK) in the 4-way handshake.

The local configuration update through the control interface SET_NETWORK command could allow privilege escalation for the local user to run code from a...

A vulnerability was found in how hostapd and wpa_supplicant writes the configuration file update for the WPA/WPA2 passphrase parameter. If this parameter...