git.openwrt.org Git - openwrt/staging/dedeckeh.git/commit

projects / openwrt / staging / dedeckeh.git / commit

author	Felix Fietkau <nbd@nbd.name>
	Mon, 16 Oct 2017 09:39:23 +0000 (11:39 +0200)
committer	Felix Fietkau <nbd@nbd.name>
	Mon, 16 Oct 2017 10:01:57 +0000 (12:01 +0200)
commit	bbda81ce3077dfade2a43a39f772cfec2e82a9a5
tree	85d3ecb10669b2829220c0c2f134e80094bd837e	tree \| snapshot
parent	0d5c1d7f238cd5aca207268950edc70ed6cf0a05	commit \| diff

hostapd: merge fixes for WPA packet number reuse with replayed messages and key reinstallation

Fixes:
- CERT case ID: VU#228519
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088

For more information see:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

Signed-off-by: Felix Fietkau <nbd@nbd.name>

14 files changed:

package/network/services/hostapd/patches/000-hostapd-Avoid-key-reinstallation-in-FT-handshake.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/001-Prevent-reinstallation-of-an-already-in-use-group-ke.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/002-Extend-protection-of-GTK-IGTK-reinstallation-of-WNM-.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/003-Prevent-installation-of-an-all-zero-TK.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/004-Fix-PTK-rekeying-to-generate-a-new-ANonce.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/005-TDLS-Reject-TPK-TK-reconfiguration.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/006-WNM-Ignore-WNM-Sleep-Mode-Response-without-pending-r.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/007-FT-Do-not-allow-multiple-Reassociation-Response-fram.patch	[new file with mode: 0644]	blob
package/network/services/hostapd/patches/200-multicall.patch		diff \| blob \| history
package/network/services/hostapd/patches/350-nl80211_del_beacon_bss.patch		diff \| blob \| history
package/network/services/hostapd/patches/370-ap_sta_support.patch		diff \| blob \| history
package/network/services/hostapd/patches/380-disable_ctrl_iface_mib.patch		diff \| blob \| history
package/network/services/hostapd/patches/430-hostapd_cli_ifdef.patch		diff \| blob \| history
package/network/services/hostapd/patches/600-ubus_support.patch		diff \| blob \| history

Staging tree of dedeckeh

RSS Atom