FEDORA-2017-f45e844a85 created by lkundrak 2 years ago for Fedora 27
stable

Fix the for the Key Reinstallation Attacks

  • hostapd: Avoid key reinstallation in FT handshake (CVE-2017-13082)
  • Fix PTK rekeying to generate a new ANonce
  • Prevent reinstallation of an already in-use group key and extend protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases (CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088)
  • Prevent installation of an all-zero TK
  • TDLS: Reject TPK-TK reconfiguration
  • WNM: Ignore WNM-Sleep Mode Response without pending request
  • FT: Do not allow multiple Reassociation Response frames

Upstream advisory: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

Details and the paper: https://www.krackattacks.com/

Reboot Required
After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

How to install

sudo dnf upgrade --advisory=FEDORA-2017-f45e844a85
This update has been submitted for testing by lkundrak. 2 years ago
User Icon xenithorb commented & provided feedback 2 years ago
karma

Looks good, works as expected. Can't test mitigation yet because no scripts have been released.

BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
User Icon leigh123linux commented & provided feedback 2 years ago
karma

WFM

User Icon maxamillion commented & provided feedback 2 years ago
karma

Seems to work here, I haven't verified CVE mitigation but it doesn't appear to break anything upon upgrade.

This update has been submitted for batched by bodhi. 2 years ago
This update has been submitted for stable by bodhi. 2 years ago
User Icon pbrobinson commented & provided feedback 2 years ago
karma

Seems fine on a few different devices and 2.4 and 5ghz networks

BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
BZ#1500304 CVE-2017-13088 wpa_supplicant: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1500303 CVE-2017-13087 wpa_supplicant: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1491698 CVE-2017-13082 wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
BZ#1491697 CVE-2017-13081 wpa_supplicant: Reinstallation of the integrity group key in the group key handshake
BZ#1491696 CVE-2017-13080 wpa_supplicant: Reinstallation of the group key in the group key handshake
BZ#1491694 CVE-2017-13079 wpa_supplicant: Reinstallation of the integrity group key in the 4-way handshake
BZ#1491693 CVE-2017-13078 wpa_supplicant: Reinstallation of the group key in the 4-way handshake
BZ#1491692 CVE-2017-13077 wpa_supplicant: Reinstallation of the pairwise key in the 4-way handshake
This update has been pushed to stable. 2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
4
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in stable
2 years ago
BZ#1491692 CVE-2017-13077 wpa_supplicant: Reinstallation of the pairwise key in the 4-way handshake
0
1
BZ#1491693 CVE-2017-13078 wpa_supplicant: Reinstallation of the group key in the 4-way handshake
0
1
BZ#1491694 CVE-2017-13079 wpa_supplicant: Reinstallation of the integrity group key in the 4-way handshake
0
1
BZ#1491696 CVE-2017-13080 wpa_supplicant: Reinstallation of the group key in the group key handshake
0
1
BZ#1491697 CVE-2017-13081 wpa_supplicant: Reinstallation of the integrity group key in the group key handshake
0
1
BZ#1491698 CVE-2017-13082 wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
0
1
BZ#1500303 CVE-2017-13087 wpa_supplicant: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
0
1
BZ#1500304 CVE-2017-13088 wpa_supplicant: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
0
1
BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
0
2

Automated Test Results