version 1.33, 2017/03/01 19:26:49 |
version 1.34, 2017/03/01 19:34:08 |
|
|
<strong>035: SECURITY FIX: March 1, 2017</strong></font> |
<strong>035: SECURITY FIX: March 1, 2017</strong></font> |
<i>All architectures</i> |
<i>All architectures</i> |
<br> |
<br> |
Due to insufficient state checks during the WPA handshake, wifi clients |
WiFi clients using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack |
using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack. |
by rouge access points. |
<br> |
<br> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.9/common/035_net80211.patch.sig"> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.9/common/035_net80211.patch.sig"> |
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |