Debian Linux Security Advisory 5739-1 - user able to escalate to the netdev group can load arbitrary shared object files in the context of the wpa_supplicant process running as root.
6e53b687a225ae7fa2fb59167de86aff9d4f52086ffaeb9f1997bea219751ff8
Ubuntu Security Notice 6945-1 - Rory McNamara discovered that wpa_supplicant could be made to load arbitrary shared objects by unprivileged users that have access to the control interface. An attacker could use this to escalate privileges to root.
a1469ccd1a0809d92167536b7c7b7a1f6ef54c467f544361227d99a25641d41b