Date: Tue, 28 Aug 2018 00:20:38 +0200 From: Miroslav Lachman <000.fbsd@quip.cz> To: freebsd-security@freebsd.org Subject: Was wpa_supplicant CVE-2018-14526 fixed in 10.4-p11? Message-ID: <b3a70fdc-e072-50be-634d-c193f776243c@quip.cz>
next in thread | raw e-mail | index | archive | help
Running pkg audit FreeBSD-10.4_11 gives me one vulnerability: # pkg audit FreeBSD-10.4_11 FreeBSD-10.4_11 is vulnerable: wpa_supplicant -- unauthenticated encrypted EAPOL-Key data CVE: CVE-2018-14526 WWW: https://vuxml.FreeBSD.org/freebsd/6bedc863-9fbe-11e8-945f-206a8a720317.html 1 problem(s) in the installed packages found. But information on the page shows it was fixed in 10.4-p10: Affected packages wpa_supplicant < 2.6_2 FreeBSD <= 10.4_10 FreeBSD <= 11.2_1 So... was it really fixed? Is there incorrect info in VuXML database file or on the web page? Kind regards Miroslav Lachman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b3a70fdc-e072-50be-634d-c193f776243c>