CVS: cvs.openbsd.org: ports

David Coppa Mon, 16 Oct 2017 14:27:52 -0700

CVSROOT:        /cvs
Module name:    ports
Changes by:     dco...@cvs.openbsd.org  2017/10/16 15:27:36


Modified files:
        security/wpa_supplicant: Makefile 
Added files:
        security/wpa_supplicant/patches: patch-src_common_wpa_common_h 
                                         patch-src_rsn_supp_wpa_c 
                                         patch-src_rsn_supp_wpa_ft_c 
                                         patch-src_rsn_supp_wpa_i_h 

Log message:
Security fixes for KRACK Attacks, from upstream
(https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt):

- Prevent reinstallation of an already in-use group key

- Extend protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases

- Prevent installation of an all-zero TK

- FT: Do not allow multiple Reassociation Response frames

CVS: cvs.openbsd.org: ports

Reply via email to