Re: WPA2 vulnerabilities — is FreeBSD-as-AP affected?
Franco Fichtner
franco at lastsummer.de
Mon Oct 16 15:36:47 UTC 2017
> On 16. Oct 2017, at 2:03 PM, Miroslav Lachman <000.fbsd at quip.cz> wrote:
>
> Lev Serebryakov wrote on 10/16/2017 13:56:
>>
>> There are whole lot of new vulnerabilities in WPA2 [implementations?]:
>> CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080,
>> CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086,
>> CVE-2017-13087, CVE-2017-13088.
>>
>> Does anybody know, is FreeBSD (our WiFi stack + hostapd /
>> wpa_supplicant) affected?
>
> Yes. it is discussed at current@ with patch
> https://lists.freebsd.org/pipermail/freebsd-current/2017-October/067193.html
Did CERT/CC while extending the deadline forget to inform FreeBSD if it
was not informed already? I am not sure why patches are thrown around
on a mailing list after such an extensive embargo period.
Cheers,
Franco
More information about the freebsd-wireless
mailing list