| version 1.19, 2017/03/01 19:26:49 |
version 1.20, 2017/03/01 19:34:08 |
|
|
| <strong>018: SECURITY FIX: March 1, 2017</strong></font> |
<strong>018: SECURITY FIX: March 1, 2017</strong></font> |
| <i>All architectures</i> |
<i>All architectures</i> |
| <br> |
<br> |
| Due to insufficient state checks during the WPA handshake, wifi clients |
WiFi clients using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack |
| using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack. |
by rouge access points. |
| <br> |
<br> |
| <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/018_net80211.patch.sig"> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/018_net80211.patch.sig"> |
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
![[BACK]](/icons/back.gif){kind=icon}
Return to errata60.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www