当前位置:网站首页>Qualcomm platform wifi-- WPA_ supplicant issue
Qualcomm platform wifi-- WPA_ supplicant issue
2022-07-02 02:54:00 【Professional developer】
Problem description :
Address wpa_supplicant vulnerabilities
These CVEs were found by security review on P.Car:
CVE-2019-11555, CVE-2019-16275
This CL implements the required patches.
solve code:
---------------------------- src/ap/drv_callbacks.c ----------------------------
index 952a3d55..e3844d97 100644
@@ -131,6 +131,19 @@ int hostapd_notif_assoc(struct hostapd_data *hapd, const u8 *addr,
"hostapd_notif_assoc: Skip event with no address");
return -1;
}
+
+ if (is_multicast_ether_addr(addr) ||
+ is_zero_ether_addr(addr) ||
+ os_memcmp(addr, hapd->own_addr, ETH_ALEN) == 0) {
+ /* Do not process any frames with unexpected/invalid SA so that
+ * we do not add any state for unexpected STA addresses or end
+ * up sending out frames to unexpected destination. */
+ wpa_printf(MSG_DEBUG, "%s: Invalid SA=&边栏推荐
- 2022 safety officer-c certificate examination questions and mock examination
- Cache processing scheme in high concurrency scenario
- QT使用sqllite
- What is the principle of bone conduction earphones and who is suitable for bone conduction earphones
- Learning notes of software testing -- theoretical knowledge of software testing
- 旋转框目标检测mmrotate v0.3.1 学习模型
- The capacity is upgraded again, and the new 256gb large capacity specification of Lexar rexa 2000x memory card is added
- 【带你学c带你飞】4day第2章 用C语言编写程序(练习 2.5 生成乘方表与阶乘表
- GB/T-2423. XX environmental test documents, including the latest documents
- GB/T-2423.xx 环境试验文件,整理包括了最新的文件里面
猜你喜欢
QT实现界面跳转
LFM信号加噪、时频分析、滤波
结婚后
LeetCode刷题(十)——顺序刷题46至50
Remote connection to MySQL under windows and Linux system
MMSegmentation系列之训练与推理自己的数据集(三)
Special symbols in SAP ui5 data binding syntax, and detailed explanation of absolute binding and relative binding concepts
图扑软件通过 CMMI5 级认证!| 国际软件领域高权威高等级认证
Cache processing scheme in high concurrency scenario
超图iServer rest服务之feature查询
随机推荐
Vsocde has cli every time it is opened js
多线程查询,效率翻倍
[reading notes] programmer training manual - practical learning is the most effective (project driven)
【JVM】创建对象的流程详解
Use usedeferredvalue for asynchronous rendering
[staff] pitch representation (treble clef | C3 60 ~ B3 71 pitch representation | C4 72 pitch representation | C5 84 pitch representation)
What is the function of the headphone driver
Principle of computer composition - interview questions for postgraduate entrance examination (review outline, key points and reference)
How to turn off the LED light of Rog motherboard
Connected block template and variants (4 questions in total)
The capacity is upgraded again, and the new 256gb large capacity specification of Lexar rexa 2000x memory card is added
Mongodb base de données non relationnelle
Set status bar color
【带你学c带你飞】1day 第2章 (练习2.2 求华氏温度 100°F 对应的摄氏温度
Render header usage of El table
Kibana操控ES
QT使用sqllite
Batch detect whether there is CDN in URL - high accuracy
Analysis of FLV packaging format
Stack - es - official documents - filter search results