Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package patchinfo.16041 for openSUSE:Leap:15.2:Update checked in at 2021-04-09 00:41:46 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2:Update/patchinfo.16041 (Old) and /work/SRC/openSUSE:Leap:15.2:Update/.patchinfo.16041.new.2401 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.16041" Fri Apr 9 00:41:46 2021 rev:1 rq:883617 version:unknown Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="16041"> <issue tracker="cve" id="2020-12695"/> <issue tracker="cve" id="2021-30004"/> <issue tracker="cve" id="2019-16275"/> <issue tracker="bnc" id="1184348">VUL-0: CVE-2021-30004: wpa_supplicant, hostapd: forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c</issue> <issue tracker="bnc" id="1150934">VUL-1: CVE-2019-16275: wpa_supplicant,hostapd: AP mode PMF disconnection</issue> <issue tracker="bnc" id="1172700">VUL-0: CVE-2020-12695: hostapd: UPnP SUBSCRIBE misbehavior WPS AP</issue> <packager>cfconrad</packager> <rating>important</rating> <category>security</category> <summary>Security update for hostapd</summary> <description>This update for hostapd fixes the following issues: - CVE-2021-30004: forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c (boo#1184348) - CVE-2020-12695: UPnP SUBSCRIBE misbehavior in hostapd WPS AP (boo#1172700) - CVE-2019-16275: AP mode PMF disconnection protection bypass (boo#1150934) - added AppArmor profile (source apparmor-usr.sbin.hostapd) </description> </patchinfo>
