USN-2383-1: wpa_supplicant vulnerability
14 October 2014
wpa_supplicant could be made to run programs if it received specially crafted network traffic.
Jouni Malinen discovered that the wpa_cli tool incorrectly sanitized
strings when being used with action scripts. A remote attacker could
possibly use this issue to execute arbitrary commands.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make all
the necessary changes.