[El-errata] ELSA-2018-3107 Moderate: Oracle Linux 7 wpa_supplicant security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Nov 6 15:07:22 PST 2018


Oracle Linux Security Advisory ELSA-2018-3107

http://linux.oracle.com/errata/ELSA-2018-3107.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
wpa_supplicant-2.6-12.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/wpa_supplicant-2.6-12.el7.src.rpm



Description of changes:

[1:2.6-12]
- Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526)

[1:2.6-11]
- Better handling of /run/wpa_supplicant (rh #1507919)

[1:2.6-10]
- Fix memory leak when macsec MKA/PSK is used (rh #1500442)
- Fix authentication failure when the MAC is updated externally (rh 
#1490885)
- Let the kernel discard EAPOL if packet type is PACKET_OTHERHOST (rh 
#1434434)
- Don't restart wpa_supplicant.service on package upgrade (rh #1505404)
- Don't own a directory in /run/ (rh #1507919)




More information about the El-errata mailing list