Errata ALT-PU-2017-2664-1: Information
Fixes
Published: Aug. 28, 2017
BDU:2017-02266
Уязвимость протокола WPA2, связанная с ошибками управления криптографическими ключами (group key) и позволяющая получить доступ к зашифрованной информации, передаваемой по беспроводной сети
Severity: HIGH (7.9) Vector: AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Links:
Published: Oct. 17, 2017
Modified: Nov. 11, 2020
Modified: Nov. 11, 2020
CVE-2017-13080
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.
Severity: MEDIUM (5.3) Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Links:
- https://www.krackattacks.com/
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-13080
- VU#228519
- 1039585
- 1039581
- 1039578
- 1039577
- 1039576
- 1039573
- 1039572
- 101274
- https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
- 20171016 Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II
- https://support.lenovo.com/us/en/product_security/LEN-17420
- FreeBSD-SA-17:07
- https://access.redhat.com/security/vulnerabilities/kracks
- RHSA-2017:2911
- RHSA-2017:2907
- USN-3455-1
- DSA-3999
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
- openSUSE-SU-2017:2755
- SUSE-SU-2017:2752
- SUSE-SU-2017:2745
- 1039703
- GLSA-201711-03
- https://support.apple.com/HT208222
- https://support.apple.com/HT208221
- https://support.apple.com/HT208220
- https://support.apple.com/HT208219
- https://source.android.com/security/bulletin/2017-11-01
- https://support.apple.com/HT208334
- https://support.apple.com/HT208327
- https://support.apple.com/HT208325
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- [debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03792en_us
- https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
- https://cert.vde.com/en-us/advisories/vde-2017-005
- https://cert.vde.com/en-us/advisories/vde-2017-003
- [debian-lts-announce] 20181113 [SECURITY] [DLA 1573-1] firmware-nonfree security update
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00402.html