CVE-2016-4476 (hostapd)
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject n and r characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) via a crafted WPS operation.
Source: CVE-2016-4476 (hostapd)