diff options
| author | Ross Burton <ross.burton@intel.com> | 2017-10-16 19:52:59 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-10-16 23:47:01 +0100 |
| commit | 827eb5b232d54909377e2b18d39d34d6c1c21413 (patch) | |
| tree | 97292b503bfac5372868fa36b831bcca45bd2b84 /meta/classes/pkgconfig.bbclass | |
| parent | b1f14ecddf5960a8ffa133d760a598bd948d21dc (diff) | |
| download | poky-827eb5b232d54909377e2b18d39d34d6c1c21413.tar.gz | |
wpa_supplicant: fix WPA2 key replay security bug
WPA2 is vulnerable to replay attacks which result in unauthenticated users
having access to the network.
* CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake
* CVE-2017-13078: reinstallation of the group key in the Four-way handshake
* CVE-2017-13079: reinstallation of the integrity group key in the Four-way
handshake
* CVE-2017-13080: reinstallation of the group key in the Group Key handshake
* CVE-2017-13081: reinstallation of the integrity group key in the Group Key
handshake
* CVE-2017-13082: accepting a retransmitted Fast BSS Transition Reassociation
Request and reinstalling the pairwise key while processing it
* CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS)
PeerKey (TPK) key in the TDLS handshake
* CVE-2017-13087: reinstallation of the group key (GTK) when processing a
Wireless Network Management (WNM) Sleep Mode Response frame
* CVE-2017-13088: reinstallation of the integrity group key (IGTK) when
processing a Wireless Network Management (WNM) Sleep Mode Response frame
Backport patches from upstream to resolve these CVEs.
(From OE-Core rev: 28d2d47f2a4fc3eb649cf58e82bce0525ab0bc74)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/classes/pkgconfig.bbclass')
0 files changed, 0 insertions, 0 deletions