diff options
author | Jouni Malinen <jouni@qca.qualcomm.com> | 2014-10-06 18:49:01 +0300 |
---|---|---|
committer | Wolfgang Wiedmeyer <wolfgit@wiedmeyer.de> | 2015-10-20 23:06:05 +0200 |
commit | a4451d093516b8810ee158c3989948422e290701 (patch) | |
tree | 5da235cade9b1413fef32fc23afd412cd3ed8ee3 /doc | |
parent | d5650a88d54239c7602c02e16d22f5e6e8bc6ae2 (diff) | |
download | external_wpa_supplicant_8_ti-master.zip external_wpa_supplicant_8_ti-master.tar.gz external_wpa_supplicant_8_ti-master.tar.bz2 |
Use os_exec() to run the action script operations to avoid undesired
command line processing for control interface event strings. Previously,
it could have been possible for some of the event strings to include
unsanitized data which is not suitable for system() use. (CVE-2014-3686)
Change-Id: If46d6cfcb9d7fc9700965e818315e5aa50fa11a5
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Tested-by: Wolfgang Wiedmeyer <wolfgit@wiedmeyer.de>
Diffstat (limited to 'doc')
0 files changed, 0 insertions, 0 deletions