Security update for wpa_supplicant (important)

2014-11-04T22:04:46
ID SUSE-SU-2014:1356-1
Type suse
Reporter Suse
Modified 2014-11-04T22:04:46

Description

This update fixes a remote code execution vulnerability in wpa_supplicant's wpa_cli and hostapd_cli tools. CVE-2014-3686 has been assigned to this issue.

Additionally, password based authentication with PKCS#5v2 has been enabled.

Security Issues:

   * CVE-2014-3686
     <<a  rel="nofollow" href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3686">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3686</a>>