wpa (1.0-3ubuntu1) raring; urgency=low
* Merge from Debian unstable. Remaining changes:
- Enable CONFIG_IBSS_RSN, so that we can turn back on "secure" adhoc
support in NetworkManager using IBSS RSN (WPA2).
- debian/wpasupplicant.postinst, debian/hostapd.postinst: Only move
sendsigs.omit.d/*.pid if the target isn't the same as the source (as is
the case when /lib/init/rw is a symlink to /run)
- debian/patches/dbus-activation-cmdline.patch: have wpasupplicant create
a pid file in /run/sendsigs.omit.d when activated by DBus.
- debian/patches/session-ticket.patch: disable the TLS Session Ticket
extension to fix auth with 802.1x PEAP on some hardware.
wpa (1.0-3) unstable; urgency=high
* ship forgotten README-P2P.
* revert to GNU readline for wpa_cli, instead of using the internal readline
implementation added in wpa 1~. Prefer libreadline-gplv2-dev, because libnl
is GPL-2 (only) - switching back to the internal readline implementation is
targeted for wheezy+1 (Closes: #677993, #678077).
* Fix DoS via specially crafted EAP-TLS messages with longer message
length than TLS data length (CVE-2012-4445, DSA 2557-1, Closes: #689990).
-- Logan Rosen <email address hidden> Fri, 30 Nov 2012 11:49:00 -0500