HCoop / jackhill / guix / guix.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 484a72a) | patch
gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes].
authorLeo Famulari <leo@famulari.name>
Mon, 16 Oct 2017 18:15:08 +0000 (14:15 -0400)
committerLeo Famulari <leo@famulari.name>
Mon, 16 Oct 2017 18:17:27 +0000 (14:17 -0400)
commit09748a352729762dacb8e6171752aaa6d03df85d
tree46c879c22c78c89ff6737e2b3fd027b87d80f907tree | snapshot (tar.gz zip)
parent484a72a036e6a8af43f517d6547446f3de344a07commit | diff
gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes].

Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}.

See these announcements for more information:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.krackattacks.com/

* gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch,
gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch,
gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch
gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch,
gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files.
* gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them.
* gnu/local.mk (dist_patch_DATA): Add them.
gnu/local.mk diff | blob | blame | history
gnu/packages/admin.scm diff | blob | blame | history
gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch [new file with mode: 0644] blob
gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch [new file with mode: 0644] blob
gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch [new file with mode: 0644] blob
gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch [new file with mode: 0644] blob
gnu/packages/patches/wpa-supplicant-krack-followups.patch [new file with mode: 0644] blob
jackhill's copy of GNU Guix: https://guix.gnu.org/