Re: [OE-core] [daisy][PATCH v2] wpa_supplicant: fix WPA2 key replay security bug

Ping, is there any plan to include this patch in a short term? Regards. On 11/03/2017 01:46 PM, Isaac Hermida wrote: > WPA2 is vulnerable to replay attacks which result in unauthenticated users > having access to the network. > > * CVE-2017-13077: reinstallation of the pairwise key in the Four-wa

[OE-core] [daisy][PATCH v2] wpa_supplicant: fix WPA2 key replay security bug

WPA2 is vulnerable to replay attacks which result in unauthenticated users having access to the network. * CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake * CVE-2017-13078: reinstallation of the group key in the Four-way handshake * CVE-2017-13079: reinstallation of