[LEDE-DEV] KRACK (Key Reinstallation Attacks), now patched upstream in hostapd

Felix Fietkau nbd at nbd.name
Mon Oct 16 03:35:59 PDT 2017


On 2017-10-16 11:48, Nick Lowe wrote:
> Referencing https://www.krackattacks.com/
> 
> Patches can be found at: https://w1.fi/security/2017-1/ and an
> advisory at http://seclists.org/oss-sec/2017/q4/83
> 
> Patches can also be found committed at https://w1.fi/cgit/hostap/log/
> 
> I think we need to get these patches integrated in to LEDE asap, or
> move to the hostapd development branch where there are currently
> committed.
> 
> A "Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2" paper is
> available from: https://papers.mathyvanhoef.com/ccs2017.pdf
I've pushed fixes for this to LEDE master and 17.01

- Felix



More information about the Lede-dev mailing list