Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revisionBoth sides next revision
releases:18.06:notes-18.06.9 [2020/11/11 11:08] – Note on end of support + update kernel zorunreleases:18.06:notes-18.06.9 [2020/11/11 11:37] – [Security fixes] zorun
Line 40: Line 40:
   * [[advisory:2020-05-06-1|Security Advisory 2020-05-06-1 - umdns out-of-bounds reads of heap data and possible buffer overflow (CVE-2020-11750)]]   * [[advisory:2020-05-06-1|Security Advisory 2020-05-06-1 - umdns out-of-bounds reads of heap data and possible buffer overflow (CVE-2020-11750)]]
   * [[changelog-18.06.9#CVE-2020-12762|libjson-c: fix out of bounds write vulnerability (CVE-2020-12762)]]   * [[changelog-18.06.9#CVE-2020-12762|libjson-c: fix out of bounds write vulnerability (CVE-2020-12762)]]
 +  * mac80211: backport some fixes for the [[wp>Kr00k|Kr00k vulnerability in WPA]]. It is not clear which wireless driver/firmware combinations could be vulnerable in OpenWrt.  These backported patches harden mac80211 just in case.
 +  * uci: backport hardening fixes
   * [[changelog-18.06.9#security_fixes|Other security fixes]]   * [[changelog-18.06.9#security_fixes|Other security fixes]]
  
  • Last modified: 2020/12/09 22:10
  • by zorun