mirror of
https://github.com/openwrt/openwrt.git
synced 2024-12-23 15:32:33 +00:00
df6a33a8d4
Bump to latest Git and refresh all patches in order to get fix for "UPnP SUBSCRIBE misbehavior in hostapd WPS AP" (CVE-2020-12695). General security vulnerability in the way the callback URLs in the UPnP SUBSCRIBE command are used were reported (VU#339275, CVE-2020-12695). Some of the described issues may be applicable to the use of UPnP in WPS AP mode functionality for supporting external registrars. Ref: https://w1.fi/security/2020-1/ Signed-off-by: Petr Štetiar <ynezz@true.cz>
12 lines
375 B
Diff
12 lines
375 B
Diff
--- a/wpa_supplicant/wpa_supplicant.c
|
|
+++ b/wpa_supplicant/wpa_supplicant.c
|
|
@@ -4952,7 +4952,7 @@ wpa_supplicant_alloc(struct wpa_supplica
|
|
if (wpa_s == NULL)
|
|
return NULL;
|
|
wpa_s->scan_req = INITIAL_SCAN_REQ;
|
|
- wpa_s->scan_interval = 5;
|
|
+ wpa_s->scan_interval = 1;
|
|
wpa_s->new_connection = 1;
|
|
wpa_s->parent = parent ? parent : wpa_s;
|
|
wpa_s->p2pdev = wpa_s->parent;
|