hostapd and wpa_supplicant security advisories

2014-1
wpa_cli and hostapd_cli action script execution vulnerability
2015-1
wpa_supplicant P2P SSID processing vulnerability
2015-2
WPS UPnP vulnerability with HTTP chunked transfer encoding
2015-3
Integer underflow in AP mode WMM Action frame processing
2015-4
EAP-pwd missing payload length validation
2015-5
Incomplete WPS and P2P NFC NDEF record payload length validation
2015-6
wpa_supplicant unauthorized WNM Sleep Mode GTK control
2015-7
EAP-pwd missing last fragment length validation
2015-8
EAP-pwd peer error path failure on unexpected Confirm message
2016-1
psk configuration parameter update allowing arbitrary data to be written

Jouni Malinen