SCIENTIFIC-LINUX-ERRATA Archives

October 2017

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Security ERRATA Important: wpa_supplicant on SL6.x i386/x86_64
From:
Pat Riehecky <[log in to unmask]>
Reply To:
[log in to unmask]
Date:
Wed, 18 Oct 2017 16:33:43 -0000
Content-Type:
text/plain
Parts/Attachments:
text/plain (27 lines) 
Synopsis:          Important: wpa_supplicant security update

Advisory ID:       SLSA-2017:2911-1

Issue Date:        2017-10-18

CVE Numbers:       CVE-2017-13077

                   CVE-2017-13078

                   CVE-2017-13080

                   CVE-2017-13087

--



Security Fix(es): * A new exploitation technique called key reinstallation

attacks (KRACK) affecting WPA2 has been discovered. A remote attacker

within Wi-Fi range could exploit these attacks to decrypt Wi-Fi traffic or

possibly inject forged Wi-Fi packets by manipulating cryptographic

handshakes used by the WPA2 protocol. (CVE-2017-13077, CVE-2017-13078,

CVE-2017-13080, CVE-2017-13087)

--



SL6

  x86_64

    wpa_supplicant-0.7.3-9.el6_9.2.x86_64.rpm

    wpa_supplicant-debuginfo-0.7.3-9.el6_9.2.x86_64.rpm

  i386

    wpa_supplicant-0.7.3-9.el6_9.2.i686.rpm

    wpa_supplicant-debuginfo-0.7.3-9.el6_9.2.i686.rpm



- Scientific Linux Development Team

ATOM RSS1 RSS2