FedoraForum.org - Fedora Support Forums and Community
Results 1 to 2 of 2
  1. #1
    Join Date
    Jun 2004
    Location
    Laurel, MD USA
    Posts
    7,174

    Is there a dnf update ih the pipellne soon for KRACK?

    The famous KRACK problem is in the news,
    http://www.zdnet.com/article/here-is...ble-right-now/
    https://www.kb.cert.org/vuls/id/CHEU-AQNN59

    "red hat" in the 2nd link points to wpa_supplicant being vulnerable

    where can I look for an update to patch? I looked in updates-testing and there's no wpa_supplicant, so maybe it's too early yet.


    UPDATE:

    great, looks like it's out:

    Code:
    $ dnf update --refresh
    Last metadata expiration check: 0:00:12 ago on Tue Oct 17 02:41:12 2017.                                          
    Dependencies resolved.                                                                                            
    ==================================================================================================================
     Package                  Arch             Version                                        Repository         Size 
    ==================================================================================================================
    Upgrading:                                                                                                        
     R-Rcpp                   x86_64           0.12.13-1.fc25                                 updates           2.8 M 
     ansible-review           noarch           0.13.4-1.fc25                                  updates            51 k 
     menu-cache               x86_64           1.0.2-7.D20170914git8c8534159d.fc25            updates            61 k 
     slack                    x86_64           2.8.2-0.1.fc21                                 slack              54 M 
     wpa_supplicant           x86_64           1:2.6-3.fc25.1                                 updates           1.2 M
    REF: https://fedoramagazine.org/protect-wifi-fedora-krack/

  2. #2
    Join Date
    Sep 2010
    Location
    Washington, DC
    Posts
    53

    Re: Is there a dnf update ih the pipellne soon for KRACK?

    Code:
    $ rpm -q --changelog wpa_supplicant | head -n 15
    * Wed Nov 01 2017 Jiří Klimeš <blueowl@centrum.cz> - 1:2.6-12
    - Fix crash when using MACsec without loaded macsec.ko (rh #1497640)
    - Enable Fast BSS Transition for station mode (rh #1372928)
    
    * Mon Oct 16 2017 Lubomir Rintel <lkundrak@v3.sk> - 1:2.6-11
    - hostapd: Avoid key reinstallation in FT handshake (CVE-2017-13082)
    - Fix PTK rekeying to generate a new ANonce
    - Prevent reinstallation of an already in-use group key and extend
      protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases
      (CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081,
      CVE-2017-13087, CVE-2017-13088)
    - Prevent installation of an all-zero TK
    - TDLS: Reject TPK-TK reconfiguration
    - WNM: Ignore WNM-Sleep Mode Response without pending request
    - FT: Do not allow multiple Reassociation Response frames

Similar Threads

  1. Replies: 7
    Last Post: 8th May 2014, 12:53 AM
  2. Update specified packages as part of kernel auto-update
    By tsumons in forum EOL (End Of Life) Versions
    Replies: 4
    Last Post: 24th February 2013, 09:30 PM
  3. Replies: 0
    Last Post: 26th December 2012, 06:31 AM
  4. Replies: 2
    Last Post: 11th June 2012, 10:21 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •