It was discovered that wpa_supplicant did not properly handle P2P (Wi-Fi Direct) group information in some situations, leading to a heap overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2021-0326)
It was discovered that hostapd did not properly handle UPnP subscribe messages in some circumstances. An attacker could use this to cause a denial of service. (CVE-2020-12695)
{ "availability": "No subscription required", "binaries": [ { "hostapd-dbgsym": "1:2.4-0ubuntu6.7", "wpasupplicant-udeb": "2.4-0ubuntu6.7", "wpagui-dbgsym": "2.4-0ubuntu6.7", "hostapd": "1:2.4-0ubuntu6.7", "wpagui": "2.4-0ubuntu6.7", "wpasupplicant": "2.4-0ubuntu6.7", "wpasupplicant-udeb-dbgsym": "2.4-0ubuntu6.7", "wpasupplicant-dbgsym": "2.4-0ubuntu6.7" } ] }
{ "availability": "No subscription required", "binaries": [ { "hostapd-dbgsym": "2:2.6-15ubuntu2.7", "wpasupplicant-udeb": "2:2.6-15ubuntu2.7", "wpagui-dbgsym": "2:2.6-15ubuntu2.7", "hostapd": "2:2.6-15ubuntu2.7", "wpagui": "2:2.6-15ubuntu2.7", "wpasupplicant": "2:2.6-15ubuntu2.7", "wpasupplicant-dbgsym": "2:2.6-15ubuntu2.7" } ] }
{ "availability": "No subscription required", "binaries": [ { "hostapd-dbgsym": "2:2.9-1ubuntu4.2", "wpasupplicant-udeb": "2:2.9-1ubuntu4.2", "wpagui-dbgsym": "2:2.9-1ubuntu4.2", "hostapd": "2:2.9-1ubuntu4.2", "wpagui": "2:2.9-1ubuntu4.2", "wpasupplicant": "2:2.9-1ubuntu4.2", "wpasupplicant-dbgsym": "2:2.9-1ubuntu4.2" } ] }