version 1.19, 2017/03/01 19:26:49 |
version 1.20, 2017/03/01 19:34:08 |
|
|
<strong>018: SECURITY FIX: March 1, 2017</strong></font> |
<strong>018: SECURITY FIX: March 1, 2017</strong></font> |
<i>All architectures</i> |
<i>All architectures</i> |
<br> |
<br> |
Due to insufficient state checks during the WPA handshake, wifi clients |
WiFi clients using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack |
using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack. |
by rouge access points. |
<br> |
<br> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/018_net80211.patch.sig"> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/018_net80211.patch.sig"> |
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |