The officially official Devuan Forum!

You are not logged in.

#1 2017-10-19 15:41:05

ghp
Member
From: Zwevegem, Belgium
Registered: 2017-05-08
Posts: 4

Krack

Is anyone working on securing wpa_supplicant against Krack?
Thanks,
Gerard

Offline

#2 2017-10-19 15:46:30

golinux
Administrator
Registered: 2016-11-25
Posts: 650

Re: Krack

I thought it was already fixed

Online

#3 2017-10-19 16:37:25

fsmithred
Administrator
Registered: 2016-11-25
Posts: 444

Re: Krack

golinux wrote:

I thought it was already fixed

Yes. It's in jessie-security

https://www.debian.org/security/2017/dsa-3999

Offline

#4 2017-10-19 18:12:31

ghp
Member
From: Zwevegem, Belgium
Registered: 2017-05-08
Posts: 4

Re: Krack

My bad, I'm hooked on Ascii.

Offline

#5 2017-10-19 20:37:11

fsmithred
Administrator
Registered: 2016-11-25
Posts: 444

Re: Krack

https://dev1galaxy.org/viewtopic.php?pid=5621#p5621

The fixed version is in ascii-security.

Offline

#6 2017-10-23 07:45:29

ghp
Member
From: Zwevegem, Belgium
Registered: 2017-05-08
Posts: 4

Re: Krack

Thanks FSR.  After changing my sources.list to use pkgmaster.devuan.org, I got the fixed wpasupplicant.

wpa (2:2.4-1+deb9u1) stretch-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Fix multiple issues in WPA protocol (CVE-2017-13077, CVE-2017-13078,
    CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082,
    CVE-2017-13086, CVE-2017-13087, CVE-2017-13088):

Offline

Board footer