nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-13 17:23:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
229,132 Commits 207 Branches 125 Tags 8.8 GiB
c637cbe992
Commit Graph

12403 Commits

Author SHA1 Message Date
Puck Meerburg
2b5d59cbdc linux: Enable fbcon deferred takeover when possible 
This config value ensures that when booting through e.g. UEFI, the
existing framebuffer contents stay put until the first character is
printed. As the default NixOS stage-1 immediately outputs a welcome
message on init, this does not impact it, but it will allow for a cleaner boot when
configured as such.
 2020-05-17 17:43:34 +00:00
Jan Tojnar
219382bf28
wpa_supplicant_gui: fix build with Inkscape 1.0 2020-05-17 08:40:30 +02:00
Tim Steinbach
2c74af6d97
linux/hardened/patches/5.6: 5.6.12.a -> 5.6.13.a 2020-05-15 20:23:17 -04:00
Tim Steinbach
6fd700adf1
linux/hardened/patches/5.4: 5.4.40.a -> 5.4.41.a 2020-05-15 20:23:15 -04:00
Tim Steinbach
d18d18a45d
linux/hardened/patches/4.19: 4.19.122.a -> 4.19.123.a 2020-05-15 20:23:09 -04:00
John Ericson
ee8cfe4bf3 treewide: pkg-config has targetPrefix 2020-05-16 00:21:21 +00:00
Lila
7517299146
treewide: fix broken AlpineLinux repo links (#87892) 2020-05-15 16:58:27 +01:00
Tim Steinbach
7ef8639163
linux: 5.6.12 -> 5.6.13 2020-05-14 09:19:09 -04:00
Tim Steinbach
e3ba43b826
linux: 5.4.40 -> 5.4.41 2020-05-14 09:19:02 -04:00
Tim Steinbach
e9dbf2e508
linux: 4.19.122 -> 4.19.123 2020-05-14 09:18:52 -04:00
Mario Rodas
9917caa5e8
Merge pull request #87542 from cmacrae/upgrade/yabai/3.0.1 
yabai: 3.0.0 -> 3.0.1
 2020-05-14 08:14:56 -05:00
Frederik Rietdijk
404fe35d65 Merge staging-next into staging 2020-05-14 09:37:03 +02:00
Colin L Rice
d6162dab50
go-modules: Update files to use vendorSha256 2020-05-14 07:22:21 +01:00
R. RyanTM
ee2922a4b4 sysstat: 12.3.1 -> 12.3.2 2020-05-13 15:39:50 -07:00
Matthew Bauer
233e60ca24
Merge pull request #87691 from matthewbauer/linux-rpi3-arm32 
linux-rpi: use bcm2709 on arm32 rpi3
 2020-05-13 10:35:21 -05:00
John Ericson
a0c003e5d8
Merge pull request #86166 from Ericson2314/suffix-salt 
*-wrapper; Switch from `infixSalt` to `suffixSalt`
 2020-05-12 18:37:16 -04:00
Gaelan Steele
b6beb43dd7 kexectools: always pass host and target to configure 
Fixes #56290.
 2020-05-12 12:16:08 -07:00
Matthew Bauer
c78ad0f7f8 linux-rpi: use bcm2709 on arm32 rpi3 
“bcmrpi3_defconfig” isn’t provided for arm32, so we need to use
bcm2709_config. When on arm64, we can still use bcmrpi3_defconfig
 2020-05-12 13:07:00 -05:00
Tim Steinbach
0c9b897241
linux-hardened: Fix kernel version detection 2020-05-12 08:37:08 -04:00
Tim Steinbach
511b503b0d
linux/hardened/patches/5.6: 5.6.11.a -> 5.6.12.a 2020-05-12 08:35:52 -04:00
Tim Steinbach
2646e949b0
linux/hardened/patches/5.4: 5.4.39.a -> 5.4.40.a 2020-05-12 08:35:50 -04:00
Tim Steinbach
fc545e4d23
linux/hardened/patches/4.19: 4.19.121.a -> 4.19.122.a 2020-05-12 08:35:48 -04:00
Tim Steinbach
677ddfef7c
linux/hardened/patches/4.14: 4.14.179.a -> 4.14.180.a 2020-05-12 08:35:46 -04:00
Florian Klink
d6f90e4f9e
Merge pull request #73530 from eadwu/nvidia/systemd-pm 
nixos/nvidia: include systemd power management
 2020-05-12 13:54:45 +02:00
John Ericson
1ac5398589 *-wrapper; Switch from infixSalt to suffixSalt 
I hate the thing too even though I made it, and rather just get rid of
it. But we can't do that yet. In the meantime, this brings us more
inline with autoconf and will make it slightly easier for me to write a
pkg-config wrapper, which we need.
 2020-05-12 00:44:44 -04:00
Alexey Shmalko
54ded21f74
Merge pull request #87541 from r-ryantm/auto-update/uclibc-ng 
uclibc: 1.0.32 -> 1.0.33
 2020-05-11 15:56:48 +03:00
Tim Steinbach
0010ae4960
linux: 5.6.11 -> 5.6.12 2020-05-11 08:43:23 -04:00
Tim Steinbach
98c79eb588
linux: 5.4.39 -> 5.4.40 2020-05-11 08:43:15 -04:00
Tim Steinbach
39426327ce
linux: 4.9.222 -> 4.9.223 2020-05-11 08:43:06 -04:00
Tim Steinbach
ddd1363bff
linux: 4.4.222 -> 4.4.223 2020-05-11 08:42:56 -04:00
Tim Steinbach
36a1ca4daa
linux: 4.19.121 -> 4.19.122 2020-05-11 08:42:49 -04:00
Tim Steinbach
6d183ed8d8
linux: 4.14.179 -> 4.14.180 2020-05-11 08:42:38 -04:00
Jörg Thalheim
885f65fbff
Merge pull request #86074 from emilazy/refactor-linux-hardened-update-script 2020-05-11 10:40:42 +01:00
cmacrae
89be001b27 yabai: 3.0.0 -> 3.0.1 2020-05-10 21:54:13 +01:00
R. RyanTM
596c8150e9 uclibc: 1.0.32 -> 1.0.33 2020-05-10 20:37:42 +00:00
R. RyanTM
ec7e931c90 libv4l: 1.18.0 -> 1.18.1 2020-05-10 18:47:02 +00:00
Edmund Wu
9a269f555a
nixos/nvidia: include systemd power management 2020-05-10 11:25:50 -04:00
Maximilian Bosch
f887d09c89
linuxPackages.wireguard: 1.0.20200429 -> 1.0.20200506 
https://lists.zx2c4.com/pipermail/wireguard/2020-May/005408.html
 2020-05-10 01:35:30 +02:00
Jörg Thalheim
887295fd2d
treewide: remove the-kenny from maintainers 
@the-kenny did a good job in the past and is set as maintainer in many package,
however since 2017-2018 he stopped contributing. To create less confusion
in pull requests when people try to request his feedback, I removed him as
maintainer from all packages.
 2020-05-09 10:28:57 +01:00
R. RyanTM
646fc239d3 libbpf: 0.0.7 -> 0.0.8 2020-05-09 08:57:25 +02:00
R. RyanTM
5e5b684435 mcelog: 168 -> 169 2020-05-09 08:54:35 +02:00
Martin Weinelt
d2ad98b1c9
microcodeIntel: 20191115 → 20200508 2020-05-09 00:06:44 +02:00
Emily
5a5a2d0342 linux/hardened/update.py: pass encoding to subprocess 2020-05-08 15:49:36 +01:00
Emily
b2ad58536c linux/hardened/update.py: commit updates in order 2020-05-08 15:49:36 +01:00
Emily
88486c4e76 linux/hardened/update.py: get versions with nix(1) 2020-05-08 15:49:36 +01:00
Emily
e77d174fcd linux/hardened/update.py: add type annotations 2020-05-08 15:49:35 +01:00
Emily
d6fe0a4e2d linux/hardened: move files into directory 2020-05-08 15:49:35 +01:00
Emily
abe4bef033 linux/update-hardened.py: use pathlib 2020-05-08 15:49:35 +01:00
Emily
83c4ac2eb3 linux/update-hardened.py: reformat 
$ isort --multi-line=3 --trailing-comma --force-grid-wrap=0 --use-parentheses …
$ black --line-length=80 …

(per the black documentation)
 2020-05-08 15:49:35 +01:00
Pavol Rusnak
6abf4a43ad
treewide: per RFC45, remove more unquoted URLs 2020-05-08 15:20:47 +02:00
Tim Steinbach
711667dc3e
linux/hardened-patches/4.14: 4.14.178.a -> 4.14.179.a 2020-05-07 20:56:39 -04:00
Tim Steinbach
3d44729f1e
linux/hardened-patches/4.19: 4.19.120.a -> 4.19.121.a 2020-05-07 20:56:38 -04:00
Tim Steinbach
ced789fa62
linux/hardened-patches/5.4: 5.4.38.a -> 5.4.39.a 2020-05-07 20:56:38 -04:00
Tim Steinbach
603741e751
linux/hardened-patches/5.6: 5.6.10.a -> 5.6.11.a 2020-05-07 20:56:38 -04:00
Vladimír Čunát
fcc68a43aa
Merge branch 'staging-next' 
The nss update is needed for security update of firefox.
For linux platforms only about 1k aarch64 rebuilds are missing;
the diff on Hydra looks OK.  Darwin needs 20k more rebuilds,
but I don't think we want to wait for that.
 2020-05-07 19:56:25 +02:00
R. RyanTM
044b8c51c9 pax-utils: 1.2.5 -> 1.2.6 2020-05-06 23:15:13 -07:00
Ryan Mulligan
3e73635e51
Merge pull request #86556 from cmacrae/pkgs/os-specific/darwin/spacebar 
spacebar: init at v0.5.0
 2020-05-06 15:19:38 -07:00
Andreas Rammhold
38d043b116
Merge pull request #87139 from mweinelt/pr/security-patch-names 
treewide: add CVE identifiers to patches
 2020-05-06 23:51:53 +02:00
Martin Weinelt
e24f5eab66
treewide: add CVE identifiers to patches 
This allows tools like broken.sh to correctly identify the patched
status.
 2020-05-06 23:18:09 +02:00
Tim Steinbach
f82e836e1d
linux: 5.6.10 -> 5.6.11 2020-05-06 15:58:09 -04:00
Tim Steinbach
bcbc507143
linux: 5.4.38 -> 5.4.39 2020-05-06 15:57:20 -04:00
Tim Steinbach
ac287ce319
linux: 4.19.120 -> 4.19.121 2020-05-06 15:56:35 -04:00
Jörg Thalheim
d49615dc55
Merge pull request #86918 from Mic92/sysdig 2020-05-06 15:52:29 +01:00
Vladimír Čunát
e8d3c1579b
Merge branch 'staging' into staging-next 2020-05-06 08:22:27 +02:00
Vladimír Čunát
54eb2d1018
Merge branch 'staging-next' 
Status on Hydra for linuxes seems good enough:
https://hydra.nixos.org/eval/1585703?filter=linux&compare=1585482&full=#tabs-now-fail
 2020-05-06 08:20:05 +02:00
Jörg Thalheim
ee8cde8d1c
Merge pull request #86391 from kwohlfahrt/gpio-utils 2020-05-06 06:57:14 +01:00
Jörg Thalheim
b4df84d203
Merge pull request #86989 from r-ryantm/auto-update/lxcfs 2020-05-06 06:29:59 +01:00
R. RyanTM
5ed0514b4f conntrack-tools: 1.4.5 -> 1.4.6 2020-05-05 18:50:47 -07:00
Mario Rodas
e08c758913
Merge pull request #86833 from r-ryantm/auto-update/criu 
criu: 3.13 -> 3.14
 2020-05-05 20:17:53 -05:00
Jan Tojnar
ea38cf9d96
Merge pull request #87017 from jtojnar/fwupd-1.4.1 2020-05-06 01:20:16 +02:00
Jan Tojnar
88d15ee4ef
fwupd: 1.4.0 → 1.4.1 
ad113b931f
 2020-05-06 00:30:11 +02:00
R. RyanTM
03425b0033 lxcfs: 4.0.1 -> 4.0.3 2020-05-05 20:32:26 +00:00
Tim Steinbach
32585ddcec
linux: 4.9.221 -> 4.9.222 2020-05-05 14:35:55 -04:00
Tim Steinbach
7f75ff0777
linux: 4.4.221 -> 4.4.222 2020-05-05 14:35:46 -04:00
Tim Steinbach
018f49380e
linux: 4.14.178 -> 4.14.179 2020-05-05 14:35:33 -04:00
Frederik Rietdijk
9875bbae75 Merge master into staging-next 2020-05-05 19:51:09 +02:00
Jörg Thalheim
330693c502
linuxPackages.sysdig: 0.26.6 -> 0.26.7 2020-05-05 11:21:35 +01:00
124
82dfd10035
syslinux: fix #86846: build on i686 
vcunat tried tests.boot.biosCdrom.i686-linux - after small local
modification to make that attribute even exist.  Installed file list
also looks fine in comparison with state before the breaking change;
hopefully it will work just fine.
 2020-05-05 10:25:44 +02:00
R. RyanTM
6967ad7185 criu: 3.13 -> 3.14 2020-05-04 20:06:29 +00:00
Jörg Thalheim
c5bcac2999
Merge pull request #86779 from r-ryantm/auto-update/bcc 
linuxPackages_hardened.bcc: 0.13.0 -> 0.14.0
 2020-05-04 17:01:22 +01:00
Kai Wohlfahrt
89d3a605e3 gpio-tools: init in kernel 5.4 
Linux provides some tools to interact with the gpiochip interface (which
replaces the deprecated sysfs GPIO interface). Expose these as a
package.

The tool has not changed much recently, so there is no need to package a
version for each kernel.
 2020-05-04 15:02:55 +01:00
R. RyanTM
bd1846f7f4 linuxPackages_hardened.bcc: 0.13.0 -> 0.14.0 2020-05-04 13:33:51 +00:00
Tim Steinbach
b6456e528e
linux: 5.7-rc3 -> 5.7-rc4 2020-05-04 08:41:50 -04:00
Maximilian Bosch
8536aeb415
Merge pull request #86605 from BKPepe/wireguard 
wireguard-compat: 1.0.20200426 -> 1.0.20200429
 2020-05-03 19:38:23 +02:00
Tim Steinbach
d51998798f
linux/hardened-patches/4.14: 4.14.177.a -> 4.14.178.a 2020-05-03 13:17:07 -04:00
Tim Steinbach
4df77514e7
linux/hardened-patches/4.19: 4.19.119.a -> 4.19.120.a 2020-05-03 13:17:03 -04:00
Tim Steinbach
c5d56b1790
linux/hardened-patches/5.4: 5.4.36.a -> 5.4.38.a 2020-05-03 13:16:59 -04:00
Tim Steinbach
e7b54c19de
linux/hardened-patches/5.6: 5.6.8.a -> 5.6.10.a 2020-05-03 13:16:49 -04:00
Josef Schlehofer
e008d5fc98
wireguard-compat: 1.0.20200426 -> 1.0.20200429 2020-05-03 18:39:08 +02:00
Linus Heckemann
88e07d3a96
Merge pull request #86598 from Valodim/aarch64-hidraw 
linux: CONFIG_HIDRAW=y
 2020-05-03 11:04:56 +02:00
Peter Hoeg
4310c1a4a0
Merge pull request #85094 from helsinki-systems/syslinux_efi 
syslinux: add uefi support
 2020-05-03 12:33:54 +08:00
ajs124
a09878c205 syslinux: fix UEFI support 2020-05-03 02:18:46 +02:00
Vincent Breitmoser
bdd2d3ccb2 linux: CONFIG_HIDRAW=y 2020-05-02 17:43:43 +02:00
Daiderd Jordan
64279cff00
Merge pull request #86557 from cmacrae/upgrade/yabai/3.0.0 
yabai: 2.4.3 -> 3.0.0
 2020-05-02 11:34:56 +02:00
Tim Steinbach
c46b55e640
linux: 5.6.8 -> 5.6.10 2020-05-02 14:46:24 -04:00
Tim Steinbach
ba19c248b7
linux: 5.4.36 -> 5.4.38 2020-05-02 14:46:24 -04:00
Tim Steinbach
13e51bb636
linux: 4.9.220 -> 4.9.221 2020-05-02 14:46:23 -04:00
Tim Steinbach
7e200a0177
linux: 4.4.220 -> 4.4.221 2020-05-02 14:46:23 -04:00
Tim Steinbach
92c2abe85f
linux: 4.19.119 -> 4.19.120 2020-05-02 14:46:23 -04:00
Tim Steinbach
163e5a8d0c
linux: 4.14.177 -> 4.14.178 2020-05-02 14:46:22 -04:00
cmacrae
c57532cf4e spacebar: init at v0.5.0 2020-05-02 10:18:34 +01:00
cmacrae
fe9938ebd4 yabai: 2.4.3 -> 3.0.0 2020-05-02 10:17:32 +01:00
cmacrae
1e16e652d8 skhd: 0.3.0 -> 0.3.5 2020-05-02 09:58:41 +01:00
R. RyanTM
9f2ecb211d setools: 4.2.2 -> 4.3.0 2020-05-02 10:13:48 +02:00
Frederik Rietdijk
22ea1b9be2 Merge staging-next into staging 2020-05-02 10:13:08 +02:00
Frederik Rietdijk
afb1041148 Merge master into staging-next 2020-05-02 09:39:00 +02:00
Daiderd Jordan
a57cbb1c36
Merge pull request #86411 from cmacrae/pkgs/os-specific/darwin/yabai 
yabai: init at 2.4.3
 2020-05-01 19:40:59 +02:00
Tim Steinbach
61b97c17d6
linux: 5.7-rc2 -> 5.7-rc3 2020-05-01 11:43:43 -04:00
cmacrae
8e8459921a yabai: init at 2.4.3 2020-05-01 11:57:28 +01:00
Florian Klink
b0aa80e427
Merge pull request #86363 from flokli/systemd-245.5 
systemd: 245.3 -> 245.5
 2020-05-01 12:32:40 +02:00
Frederik Rietdijk
00bbfccecf Merge staging into staging-next 2020-05-01 09:28:45 +02:00
Daniel Fullmer
45c0523b77 rtl8812au: 5.2.20.2_28373.20190903 -> 5.6.4.2_35491.20200318 2020-05-01 09:25:36 +02:00
Frederik Rietdijk
484ee79050 Merge staging-next into staging 2020-05-01 08:57:10 +02:00
Frederik Rietdijk
2da19f9483
Merge pull request #85653 from veprbl/pr/darwin_binutils_add_man 
darwin.binutils: propagate man pages from darwin.cctools
 2020-05-01 08:49:56 +02:00
Tim Steinbach
5fa90ed9e2
linux/hardened-patches/4.19: 4.19.118.a -> 4.19.119.a 2020-04-30 10:05:58 -04:00
Tim Steinbach
22c0c49d61
linux/hardened-patches/5.4: 5.4.35.a -> 5.4.36.a 2020-04-30 10:05:56 -04:00
Tim Steinbach
53ea32be28
linux/hardened-patches/5.6: 5.6.7.a -> 5.6.8.a 2020-04-30 10:05:50 -04:00
Florian Klink
eb73b71df4 systemd: 245.3 -> 245.5 
Also, update 0005-Add-some-NixOS-specific-unit-directories.patch to
explain how and where these paths are being used.
 2020-04-30 02:08:42 +02:00
Florian Klink
a3082bc6b7 systemd: regenerate patches 
It seems nix is much more permissive in applying patches than git am.

These patches were regenerated by running
`git am path/to/nixpkgs/pkgs/os-specific/linux/systemd/*.patch`,
and manually running `patch -p1 < path/to/nixpkgs/pkgs/os-specific/linux/systemd/*N.patch`
where necessary.
 2020-04-30 01:47:35 +02:00
Tim Steinbach
bbf8ce13eb
linux: 5.6.7 -> 5.6.8 2020-04-29 15:38:11 -04:00
Tim Steinbach
100e81982d
linux: 5.4.35 -> 5.4.36 2020-04-29 15:38:11 -04:00
Tim Steinbach
ca44d3eb1e
linux: 4.19.118 -> 4.19.119 2020-04-29 15:38:11 -04:00
Florian Klink
f046de4210
Merge pull request #86168 from lblasc/sof-firmware 
Sound Open Firmware support, sof-firmware: init at 1.4.2, update kernel config
 2020-04-29 12:36:53 +02:00
Matthieu Coudron
8ce65087c3 broadcom_sta: fix build on 5.6 2020-04-29 11:57:03 +02:00
Florian Klink
fbc63c4a7b
Merge pull request #86208 from arianvp/fix-linux-systemd-dep 
linux: do not depend on systemd indirectly
 2020-04-29 11:56:51 +02:00
Luka Blaskovic
6fc9fd53db linux config: enable Sound Open Firmware support 2020-04-29 07:31:49 +00:00
Jan Tojnar
2b5e2ffe0a
Merge pull request #86165 from jtojnar/libusb-compat-rename 2020-04-29 08:26:08 +02:00
jakobrs
d21cc14114 v4l2loopback: 0.12.4 -> 0.12.5 2020-04-29 07:19:01 +02:00
worldofpeace
d85aabfb5f
Merge pull request #84449 from doronbehar/improve-guvcview 
guvcview: fix gsettings filechooser errors
 2020-04-28 13:32:13 -04:00
Bruno Bzeznik
75a3a9af8d libfabric: init at 1.10.0 2020-04-28 17:09:15 +02:00
Arian van Putten
d103dc4998 linux: do not depend on systemd indirectly 
utillinux depends on systemd because:

* uuidd supports socket activation
* lslogins can show recent journal entries
* fstrim comes with a service file (and we use this in NixOS)
* logger can write journal entries
(See https://www.openembedded.org/pipermail/openembedded-core/2015-February/102069.html)

systemd doesn't depend on utillinux but on utillinuxMinimal which is a
version of utillinux without these features to avoid cyclic
dependencies.

With this change, the linux kernel (of which i don't fully understand
why it would depend on util-linux in the first place, but this was added in
https://github.com/NixOS/nixpkgs/pull/32137/files without too much
explanation) depends on the minimal version of util-linux too.

This makes it that every time we change build flags in systemd
the linux kernel doesn't have to wastefully rebuild.
 2020-04-28 15:34:44 +02:00
Bruno Bzeznik
5a16436ffb
libpsm2: init at 11.2.156 (#85920) 
* libpsm2: init at 11.2.156
 2020-04-28 11:38:21 +02:00
Luka Blaskovic
fe7f770666 sof-firmware: init at 1.4.2 2020-04-28 05:25:38 +00:00
Jan Tojnar
e89e2edc73
libusb-compat-0_1: rename from libusb 2020-04-28 05:33:41 +02:00
David Terry
e9c44e8956
wireguard-compat: 1.0.20200413 -> 1.0.20200426 
https://lists.zx2c4.com/pipermail/wireguard/2020-April/005237.html
 2020-04-27 08:15:39 +02:00
Tim Steinbach
a9fa6028ad
linux/hardened-patches/4.19: 4.19.117.a -> 4.19.118.a 2020-04-26 12:23:07 -04:00
Tim Steinbach
4af476e2b3
linux/hardened-patches/5.4: 5.4.34.a -> 5.4.35.a 2020-04-26 12:23:05 -04:00
Tim Steinbach
334627d92f
linux/hardened-patches/5.6: 5.6.6.a -> 5.6.7.a 2020-04-26 12:23:03 -04:00
Tim Steinbach
be48bf2ba8
linux/hardened-patches/4.14: 4.14.176.a -> 4.14.177.a 2020-04-26 12:23:01 -04:00
Tim Steinbach
4883dde6b7
linux: 4.9.219 -> 4.9.220 2020-04-26 12:22:41 -04:00
Tim Steinbach
6efb2ba2bf
linux: 4.4.219 -> 4.4.220 2020-04-26 12:22:05 -04:00
Tim Steinbach
6617a79ba3
linux: 4.14.176 -> 4.14.177 2020-04-26 12:21:32 -04:00
Jörg Thalheim
ef959a1d9b
Merge pull request #85984 from Mic92/wireguard 2020-04-26 11:28:55 +01:00
Doron Behar
59588b68cd guvcview: use libsForQt5.callPackage 2020-04-25 21:14:40 +03:00
Martin Weinelt
3e9f3a3ebd
hostapd: apply patch for CVE-2019-16275 
AP mode PMF disconnection protection bypass

Published: September 11, 2019
Identifiers:
- CVE-2019-16275
Latest version available from: https://w1.fi/security/2019-7/

Vulnerability

hostapd (and wpa_supplicant when controlling AP mode) did not perform
sufficient source address validation for some received Management frames
and this could result in ending up sending a frame that caused
associated stations to incorrectly believe they were disconnected from
the network even if management frame protection (also known as PMF) was
negotiated for the association. This could be considered to be a denial
of service vulnerability since PMF is supposed to protect from this type
of issues. It should be noted that if PMF is not enabled, there would be
no protocol level protection against this type of denial service
attacks.

An attacker in radio range of the access point could inject a specially
constructed unauthenticated IEEE 802.11 frame to the access point to
cause associated stations to be disconnected and require a reconnection
to the network.

Vulnerable versions/configurations

All hostapd and wpa_supplicants versions with PMF support
(CONFIG_IEEE80211W=y) and a runtime configuration enabled AP mode with
PMF being enabled (optional or required). In addition, this would be
applicable only when using user space based MLME/SME in AP mode, i.e.,
when hostapd (or wpa_supplicant when controlling AP mode) would process
authentication and association management frames. This condition would
be applicable mainly with drivers that use mac80211.

Possible mitigation steps

- Merge the following commit to wpa_supplicant/hostapd and rebuild:

  AP: Silently ignore management frame from unexpected source address

  This patch is available from https://w1.fi/security/2019-7/

- Update to wpa_supplicant/hostapd v2.10 or newer, once available
 2020-04-25 14:35:20 +02:00
Jörg Thalheim
21ec1f5ead
wireguard: 1.0.20200401 -> 1.0.20200413 2020-04-25 11:16:10 +01:00
Maximilian Bosch
61c95a2eec
iwd: 1.6 -> 1.7 2020-04-25 12:13:01 +02:00
Maximilian Bosch
74fcd4f2d6
ell: 0.30 -> 0.31 2020-04-25 12:12:54 +02:00
Doron Behar
6aaab573e2 guvcview: enable to build with both qt5 and gtk3 2020-04-25 12:52:15 +03:00
Doron Behar
ac0f42dee8 guvcview: format arguments 2020-04-25 12:52:15 +03:00