[Midnightbsd-cvs] src [12008] trunk/UPDATING: add wpa security patch
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Wed Aug 15 09:26:29 EDT 2018
Revision: 12008
http://svnweb.midnightbsd.org/src/?rev=12008
Author: laffer1
Date: 2018-08-15 09:26:29 -0400 (Wed, 15 Aug 2018)
Log Message:
-----------
add wpa security patch
Modified Paths:
--------------
trunk/UPDATING
Modified: trunk/UPDATING
===================================================================
--- trunk/UPDATING 2018-08-15 13:23:05 UTC (rev 12007)
+++ trunk/UPDATING 2018-08-15 13:26:29 UTC (rev 12008)
@@ -1,5 +1,16 @@
Updating Information for MidnightBSD users.
+20180815:
+ When using WPA2, EAPOL-Key frames with the Encrypted flag and without the MIC
+ flag set, the data field was decrypted first without verifying the MIC. When
+ the dta field was encrypted using RC4, for example, when negotiating TKIP as
+ a pairwise cipher, the unauthenticated but decrypted data was subsequently
+ processed. This opened wpa_supplicant(8) to abuse by decryption and recovery
+ of sensitive information contained in EAPOL-Key messages.
+
+ See https://w1.fi/security/2018-1/unauthenticated-eapol-key-decryption.txt
+ for a detailed description of the bug.
+
20180720:
Pull in r211155 from upstream llvm trunk (by Tim Northover):
More information about the Midnightbsd-cvs
mailing list