guix-patches
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#28869] [PATCH] gnu: wpa-supplicant: Fix "KRACK" key reinstallation

From: Marius Bakke
Subject: [bug#28869] [PATCH] gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes].
Date: Mon, 16 Oct 2017 23:23:28 +0200
User-agent: Notmuch/0.25.1 (https://notmuchmail.org) Emacs/25.3.1 (x86_64-pc-linux-gnu) 
Leo Famulari <address@hidden> writes:

> Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}.
>
> See these announcements for more information:
> https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
> https://www.krackattacks.com/
>
> * gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch,
> gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch,
> gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch
> gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch,
> gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files.
> * gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them.
> * gnu/local.mk (dist_patch_DATA): Add them.

LGTM, thanks for taking care of this.

Attachment: signature.asc
Description: PGP signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]