CVS commit: src/external/bsd/wpa/dist/src/rsn_supp

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src/external/bsd/wpa/dist/src/rsn_supp
From: "Christos Zoulas" <christos%netbsd.org@localhost>
Date: Thu, 16 Aug 2018 07:34:41 -0400

Module Name:    src
Committed By:   christos
Date:           Thu Aug 16 11:34:41 UTC 2018

Modified Files:
        src/external/bsd/wpa/dist/src/rsn_supp: wpa.c

Log Message:
>From FreeBSD:

When using WPA2, EAPOL-Key frames with the Encrypted flag and without the MIC
flag set, the data field was decrypted first without verifying the MIC.  When
the dta field was encrypted using RC4, for example, when negotiating TKIP as
a pairwise cipher, the unauthenticated but decrypted data was subsequently
processed.  This opened wpa_supplicant(8) to abuse by decryption and recovery
of sensitive information contained in EAPOL-Key messages.

See https://w1.fi/security/2018-1/unauthenticated-eapol-key-decryption.txt
for a detailed description of the bug.

XXX: pullup-8


To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 src/external/bsd/wpa/dist/src/rsn_supp/wpa.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/doc
Next by Date: CVS commit: src/common/lib/libc/string
Previous by Thread: CVS commit: src/doc
Next by Thread: CVS commit: src/common/lib/libc/string
Indexes:

Home | Main Index | Thread Index | Old Index