[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#28869: [PATCH] gnu: wpa-supplicant: Fix "KRACK" key reinstallation a
|
From: |
Leo Famulari |
|
Subject: |
bug#28869: [PATCH] gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes]. |
|
Date: |
Mon, 16 Oct 2017 17:49:10 -0400 |
|
User-agent: |
Mutt/1.9.1 (2017-09-22) |
On Mon, Oct 16, 2017 at 11:23:28PM +0200, Marius Bakke wrote:
> Leo Famulari <address@hidden> writes:
>
> > Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}.
> >
> > See these announcements for more information:
> > https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
> > https://www.krackattacks.com/
> >
> > * gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch,
> > gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch,
> > gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch
> > gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch,
> > gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files.
> > * gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them.
> > * gnu/local.mk (dist_patch_DATA): Add them.
>
> LGTM, thanks for taking care of this.
Thanks for the review! Pushed as
09748a352729762dacb8e6171752aaa6d03df85d
signature.asc
Description: PGP signature