wpa_supplicant: fix WPA2 key replay security bug - openembedded-core

diff options

author	Ross Burton <ross.burton@intel.com>	2017-10-16 17:03:04 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-10-16 23:45:45 +0100
commit	1c46e201ef486395ec047f29af272f8c3dfd9611 (patch)
tree	ece3a162c1363362b4502692852b8b06f987018a /meta/recipes-support
parent	8ca61a5464743ff85b6d26886112750d6ddd13e0 (diff)
download	openembedded-core-1c46e201ef486395ec047f29af272f8c3dfd9611.tar.gz

wpa_supplicant: fix WPA2 key replay security bug

WPA2 is vulnerable to replay attacks which result in unauthenticated users having access to the network. * CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake * CVE-2017-13078: reinstallation of the group key in the Four-way handshake * CVE-2017-13079: reinstallation of the integrity group key in the Four-way handshake * CVE-2017-13080: reinstallation of the group key in the Group Key handshake * CVE-2017-13081: reinstallation of the integrity group key in the Group Key handshake * CVE-2017-13082: accepting a retransmitted Fast BSS Transition Reassociation Request and reinstalling the pairwise key while processing it * CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake * CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame * CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame Backport patches from upstream to resolve these CVEs. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-support')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: