A bug has just been announced in an open source program called wpa_supplicant. Many of us use this program on a regular basis, often without even realising it.
Android devices, for example, include it as part of the operating system distribution; support for Wi-Fi enabled devices on Linux almost always relies on it.
That’s because it’s software that deals with finding, connecting to, and authenticating against Wi-Fi access points that use WPA security.