From: Martin Jansa Date: Sat, 20 Mar 2021 08:12:22 +0000 (+0100) Subject: wpa-supplicant: update CVE-2021-27803.patch X-Git-Tag: 2020-04.7-dunfell~25 X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=060587ae477d785db017f4d8a2152206c258da42;p=openembedded-core.git wpa-supplicant: update CVE-2021-27803.patch * update to match what was merged in master branch (and I have now sent for gatesgarth) * fixes Upstream-Status (there is a missing 'c' in 'Acepted' and 'Backport' is more accurate) Signed-off-by: Martin Jansa Signed-off-by: Steve Sakoman --- diff --git a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch index dc576d1a11..004b1dbd19 100644 --- a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch +++ b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2021-27803.patch @@ -18,15 +18,19 @@ p2p_add_device() so that the stale pointer cannot be used. Fixes: 17bef1e97a50 ("P2P: Add peer entry based on Provision Discovery Request") Signed-off-by: Jouni Malinen -Upstream-Status: Acepted [https://w1.fi/cgit/hostap/commit/?id=8460e3230988ef2ec13ce6b69b687e941f6cdb32] +Upstream-Status: Backport CVE: CVE-2021-27803 -Signed-off-by: Minjae Kim + +Reference to upstream patch: +[https://w1.fi/cgit/hostap/commit/?id=8460e3230988ef2ec13ce6b69b687e941f6cdb32] + +Signed-off-by: Stefan Ghinea --- src/p2p/p2p_pd.c | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) diff --git a/src/p2p/p2p_pd.c b/src/p2p/p2p_pd.c -index 3994ec03f86b..05fd593494ef 100644 +index 3994ec0..05fd593 100644 --- a/src/p2p/p2p_pd.c +++ b/src/p2p/p2p_pd.c @@ -595,14 +595,12 @@ void p2p_process_prov_disc_req(struct p2p_data *p2p, const u8 *sa, @@ -50,5 +54,5 @@ index 3994ec03f86b..05fd593494ef 100644 } else if (msg.wfd_subelems) { wpabuf_free(dev->info.wfd_subelems); -- -2.25.1 +2.17.1