Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-13088

Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients.

Related bugs and status

CVE-2017-13088 (Candidate) is related to these bugs:

Bug #1723909: [security] WPA2: Many vulnerabilities discovered

Summary				In	Importance	Status
	1723909	[security] WPA2: Many vulnerabilities discovered		wpa (Ubuntu)	Critical	Fix Released

Bug #1730399: Add krackattacks mitigation

Summary				In	Importance	Status
	1730399	Add krackattacks mitigation		wpa (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://www.krackattac...
CERT-VN: VU#228519
BID: 101274
SECTRACK: 1039573
SECTRACK: 1039576
SECTRACK: 1039577
SECTRACK: 1039578
SECTRACK: 1039581
MISC: https://w1.fi/security...
CONFIRM: http://www.arubanetwor...
CONFIRM: https://access.redhat....
CONFIRM: https://support.lenovo...
CISCO: 20171016 Multiple Vuln...
DEBIAN: DSA-3999
FREEBSD: FreeBSD-SA-17:07
REDHAT: RHSA-2017:2907
SUSE: SUSE-SU-2017:2745
SUSE: SUSE-SU-2017:2752
SUSE: openSUSE-SU-2017:2755
UBUNTU: USN-3455-1
GENTOO: GLSA-201711-03
CONFIRM: https://source.android...
CONFIRM: https://cert-portal.si...
CONFIRM: https://cert.vde.com/e...
CONFIRM: http://www.oracle.com/...