wpa_supplicant: fix CVE-2015-4143

see http://www.openwall.com/lists/oss-security/2015/05/09/6
author: Pascal Wittmann <mail@pascal-wittmann.de> 2015-06-16 17:28:35 +0200
committer: Pascal Wittmann <mail@pascal-wittmann.de> 2015-06-16 17:28:35 +0200
commit: 7c4a0eaa53616293a84272257cf3460f4f38a35d (patch)
tree: 0e96374a8d3de82f8d63bdd115e24bfa0b3a4d94 /pkgs/os-specific/linux/wpa_supplicant
parent: d2ad04cd382e097eb72f4084deee9842aa362ba1 (diff)
download: nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.gz
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.bz2
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.lz
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.xz
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.zst
nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.zip
1 files changed, 20 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/wpa_supplicant/default.nix b/pkgs/os-specific/linux/wpa_supplicant/default.nix
index c709880af2d..3cf45697129 100644
--- a/pkgs/os-specific/linux/wpa_supplicant/default.nix
+++ b/pkgs/os-specific/linux/wpa_supplicant/default.nix
@@ -84,6 +84,26 @@ stdenv.mkDerivation rec {
       url = "http://w1.fi/cgit/hostap/patch/?id=8a78e227df1ead19be8e12a4108e448887e64d6f";
       sha256 = "1k2mcq1jv8xzi8061ixcz6j56n4i8wbq0vxcvml204q1syy2ika0";
     })
+    (fetchpatch {
+      url = http://w1.fi/security/2015-4/0001-EAP-pwd-peer-Fix-payload-length-validation-for-Commi.patch;
+      sha256 = "1cg4r638s4m9ar9lmzm534y657ppcm8bl1h363kjnng1zbzh8rfb";
+    })
+    (fetchpatch {
+      url = http://w1.fi/security/2015-4/0002-EAP-pwd-server-Fix-payload-length-validation-for-Com.patch;
+      sha256 = "0ky850rg1k9lwd1p4wzyvl2dpi5g7k1mwx1ndjclp4x7bshb6w79";
+    })
+    (fetchpatch {
+      url = http://w1.fi/security/2015-4/0003-EAP-pwd-peer-Fix-Total-Length-parsing-for-fragment-r.patch;
+      sha256 = "0hicw3vk1khk849xil75ckrg1xzbwcva7g01kp0lvab34dwhryy7";
+    })
+    (fetchpatch {
+      url = http://w1.fi/security/2015-4/0004-EAP-pwd-server-Fix-Total-Length-parsing-for-fragment.patch;
+      sha256 = "18d5r3zbwz96n4zzj9r27cv4kvc09zkj9x0p6qji68h8k2pcazxd";
+    })
+    (fetchpatch {
+      url = http://w1.fi/security/2015-4/0005-EAP-pwd-peer-Fix-asymmetric-fragmentation-behavior.patch;
+      sha256 = "1ndzyfpnxpvryiqal4kdic02kg9dgznh65kaqydaqqfj3rbjdqip";
+    })
   ];
 
   postInstall = ''
author	Pascal Wittmann <mail@pascal-wittmann.de>	2015-06-16 17:28:35 +0200
committer	Pascal Wittmann <mail@pascal-wittmann.de>	2015-06-16 17:28:35 +0200
commit	7c4a0eaa53616293a84272257cf3460f4f38a35d (patch)
tree	0e96374a8d3de82f8d63bdd115e24bfa0b3a4d94 /pkgs/os-specific/linux/wpa_supplicant
parent	d2ad04cd382e097eb72f4084deee9842aa362ba1 (diff)
download	nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.gz nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.bz2 nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.lz nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.xz nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.tar.zst nixpkgs-7c4a0eaa53616293a84272257cf3460f4f38a35d.zip