CaROS/poky
3
1
Fork 0
mirror of https://git.yoctoproject.org/git/poky synced 2026-01-01 13:58:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
krogoth
poky/meta
History
Ross Burton 54e3f82bd7 wpa_supplicant: fix WPA2 key replay security bug 
WPA2 is vulnerable to replay attacks which result in unauthenticated users
having access to the network.

* CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake

* CVE-2017-13078: reinstallation of the group key in the Four-way handshake

* CVE-2017-13079: reinstallation of the integrity group key in the Four-way
handshake

* CVE-2017-13080: reinstallation of the group key in the Group Key handshake

* CVE-2017-13081: reinstallation of the integrity group key in the Group Key
handshake

* CVE-2017-13082: accepting a retransmitted Fast BSS Transition Reassociation
Request and reinstalling the pairwise key while processing it

* CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS)
PeerKey (TPK) key in the TDLS handshake

* CVE-2017-13087: reinstallation of the group key (GTK) when processing a
Wireless Network Management (WNM) Sleep Mode Response frame

* CVE-2017-13088: reinstallation of the integrity group key (IGTK) when
processing a Wireless Network Management (WNM) Sleep Mode Response frame

Backport patches from upstream to resolve these CVEs.

(From OE-Core rev: bfa04fa71c47e8fe9528208848cfcec2e232777d)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-10-16 23:47:12 +01:00
..
classes package_ipk: Clean up Source entry in ipk packages 2017-06-16 10:21:12 +01:00
conf xserver-xf86-config: pre-load int10 and exa modules 2016-09-23 15:27:05 +01:00
files ext-sdk-prepare.py: exclude do_rm_work from unexpected output; create unit test 2016-04-18 16:28:21 +01:00
lib oeqa/selftest/recipetool: actually fix create_github test 2017-06-07 15:59:03 +01:00
recipes-bsp grub2: enforce -no-pie if supported by compiler 2017-06-07 08:40:06 +01:00
recipes-connectivity wpa_supplicant: fix WPA2 key replay security bug 2017-10-16 23:47:12 +01:00
recipes-core initrdscripts/init-install*: Add rootwait when installing to USB devices 2017-06-27 23:41:01 +01:00
recipes-devtools pseudo: Work around issues with glibc 2.24 2017-05-18 13:14:22 +01:00
recipes-extended tzdata: update to 2016i 2017-05-18 13:14:21 +01:00
recipes-gnome librsvg: Security fixes via update to 2.40.15 2016-06-29 19:35:58 +01:00
recipes-graphics mesa: update SRC_URI 2017-05-18 13:14:22 +01:00
recipes-kernel cryptodev-linux: update SRC_URI 2017-05-27 14:52:40 +01:00
recipes-lsb4 libpng -lsb: update SRC_URI 2017-05-18 13:14:22 +01:00
recipes-multimedia libpng: update SRC_URI back to SF 2017-05-18 13:14:22 +01:00
recipes-rt linux-yocto-rt, core-image-rt*: Explicitly skip when PREFERRED_PROVIDER_virtual/kernel isn't set to linux-yocto-rt 2016-06-29 19:36:01 +01:00
recipes-sato webkitgtk: fix racy double build of WebKit2-4.0.gir 2017-05-28 01:02:19 +01:00
recipes-support libgcrypt: fix CVE-2017-9526 2017-07-19 15:13:47 +01:00
site meta/site: remove sizeof_off_t 2016-04-12 22:50:21 +01:00
COPYING.GPLv2
COPYING.MIT
recipes.txt