Wind River Support Network

HomeDefectsLIN9-9677
Fixed

LIN9-9677 : Security Advisory - hostapd&wpa-supplicant - CVE-2019-10064

Created: Feb 29, 2020    Updated: May 26, 2020
Resolved Date: Mar 15, 2020
Found In Version: 9.0.0.1
Fix Version: 9.0.0.25
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

hostapd before 2.6, in EAP mode, makes calls to the rand() and random() standard library functions without any preceding srand() or srandom() call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743.

CREATE(Triage):(User=admin) [CVE-2019-10064|https://nvd.nist.gov/vuln/detail/CVE-2019-10064]

CVEs


Live chat
Online