CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2017/03/01 13:57:51
Modified files:
sys/net80211 : Tag: OPENBSD_6_0 ieee80211_input.c
ieee80211_node.h ieee80211_pae_input.c
ieee80211_pae_output.c ieee80211_proto.c
Log message:
MFC: Fix a bug allowing a man-in-the-middle attack against WPA wireless clients.
A malicious AP could trick clients into connecting to the malicious AP
instead of the desired AP. All frames would then be sent in the clear.
This problem was found and reported by Mathy Vanhoef who also provided
an initial patch which we improved together.
(OpenBSD 5.9 errata 35, Mar 1, 2017)
by and ok stsp@
