Bug 8408 - Fix KRACKs attacks security vulnerability in wpa_supplicant
: Fix KRACKs attacks security vulnerability in wpa_supplicant
Status: VERIFIED FIXED
Product: Desktop Bugs
Classification: ROSA Desktop
Component: Main Packages
: Fresh
: All Linux
: Highest blocker
: ---
Assigned To: ROSA Linux Bugs
: ROSA Linux Bugs
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2017-10-17 05:38 MSD by Andrey Bondrov
Modified: 2017-10-18 14:33 MSD (History)
2 users (show)

See Also:
RPM Package: wpa_supplicant
ISO-related:
Bad POT generating:
Upstream:
vladimir.potapov: qa_verified+
andrey.bondrov: published+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andrey Bondrov 2017-10-17 05:38:09 MSD
We need to fix KRACKs attacks security vulnerability in wpa_supplicant. See https://www.krackattacks.com/ for more info.

It's a major security issue that needs to be fixed ASAP.
Comment 1 Andrey Bondrov 2017-10-17 05:39:45 MSD
Advisory: "Fix KRACKs attacks security vulnerability"

rosa2016.1:
https://abf.rosalinux.ru/build_lists/2900444
https://abf.rosalinux.ru/build_lists/2900445
Comment 2 Andrey Bondrov 2017-10-17 05:40:02 MSD
Advisory: "Update wpa_supplicant to version 2.6. Fix KRACKs attacks security vulnerability"

rosa2014.1:
https://abf.rosalinux.ru/build_lists/2900446
https://abf.rosalinux.ru/build_lists/2900447
Comment 3 Vladimir Potapov 2017-10-17 19:04:04 MSD
The update is sent to expanded testing
***************************************
Comment 4 Eugene Shatokhin 2017-10-18 14:00:04 MSD
The updated wpa_supplicant has been working well for me so far. https://linux-hardware.org/index.php?probe=0e6b9e0c0e. No visible issues.

Many thanks to Andrey for a quick update!
Comment 5 Vladimir Potapov 2017-10-18 14:03:43 MSD
wpa_supplicant-2.6-6
rosa2014.1:
https://abf.rosalinux.ru/build_lists/2900446
https://abf.rosalinux.ru/build_lists/2900447

rosa2016.1:
https://abf.rosalinux.ru/build_lists/2900444
https://abf.rosalinux.ru/build_lists/2900445
*************************** Advisory ****************************
Fix KRACKs attacks security vulnerability
*****************************************************************
QA Verified