git.archive.openwrt.org Git - 15.05/openwrt.git/commit

author	Zoltan HERPAI <wigyori@uid0.hu>
	Mon, 16 Oct 2017 12:38:45 +0000 (14:38 +0200)
committer	Zoltan HERPAI <wigyori@uid0.hu>
	Mon, 16 Oct 2017 12:38:45 +0000 (14:38 +0200)
commit	a1524efd13c52797d0f7492b9835a91598c073dd
tree	a4362294424fadfd20be8fcc6d5146f4ef4f2a75	tree \| snapshot
parent	a4f8825e0ff5066a7c978f65a1b48407abba7a81	commit \| diff

CC: hostapd: fix WPA packet number reuse with replayed messages and key reinstallation
Fixes:
- CERT case ID: VU#228519
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088

For more information, please refer to:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

Signed-off-by: Zoltan HERPAI <wigyori@uid0.hu>

package/network/services/hostapd/patches/901-v2.6-0001-hostapd-Avoid-key-reinstallation-in-FT-handshake.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/902-v2.6-0002-Prevent-reinstallation-of-an-already-in-use-group-ke.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/903-v2.6-0003-Extend-protection-of-GTK-IGTK-reinstallation-of-WNM-.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/904-v2.6-0004-Prevent-installation-of-an-all-zero-TK.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/905-v2.6-0005-Fix-PTK-rekeying-to-generate-a-new-ANonce.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/906-v2.6-0006-TDLS-Reject-TPK-TK-reconfiguration.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/907-v2.6-0007-WNM-Ignore-WNM-Sleep-Mode-Response-without-pending-r.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/908-v2.6-0008-FT-Do-not-allow-multiple-Reassociation-Response-fram.patch	[new file with mode: 0644]	blob

OpenWrt 15.05 release branch

RSS Atom