FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

WPA packet number reuse with replayed messages and key reinstallation

Affected packages
wpa_supplicant <= 2.6_1
hostapd <= 2.6

Details

VuXML ID d670a953-b2a1-11e7-a633-009c02a2ab30
Discovery 2017-10-16
Entry 2017-10-16

wpa_supplicant developers report:

A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys (TK, GTK, or IGTK) by replaying a specific frame that is used to manage the keys.

References

CVE Name CVE-2017-13077
CVE Name CVE-2017-13078
CVE Name CVE-2017-13079
CVE Name CVE-2017-13080
CVE Name CVE-2017-13081
CVE Name CVE-2017-13082
CVE Name CVE-2017-13084
CVE Name CVE-2017-13086
CVE Name CVE-2017-13087
CVE Name CVE-2017-13088
URL http://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
URL https://www.kb.cert.org/vuls/id/228519