CVE-2017-13081

Priority
High
Description
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows
reinstallation of the Integrity Group Temporal Key (IGTK) during the group
key handshake, allowing an attacker within radio range to spoof frames from
access points to clients.
References
Bugs
Package
Source: wpa (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):released (2.4-0ubuntu10)
Ubuntu 18.04 LTS (Bionic Beaver):released (2.4-0ubuntu10)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (2.1-0ubuntu1.5)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.4-0ubuntu6.2)
Ubuntu 17.04 (Zesty Zapus):released (2.4-0ubuntu9.1)
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):needs-triage
Ubuntu 18.04 LTS (Bionic Beaver):needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):needs-triage
Ubuntu 17.04 (Zesty Zapus):needs-triage
More Information

Updated: 2017-11-21 19:14:14 UTC (commit 13745)