Comment 1 Richard Yao (RETIRED) 2017-10-16 13:37:38 UTC

Details here:

https://www.krackattacks.com/

Both hostapd and wpa_supplicant are affected. Upstream has published patches:

https://w1.fi/security/2017-1/

Comment 2 Thomas Deutschmann (RETIRED) 2017-10-16 13:53:17 UTC

See tracker bug 634440 for more details.

Comment 3 Rick Farina (Zero_Chaos) 2017-10-16 13:53:45 UTC

The patches for this seem to break 802.11r/FT for me.  As no one has ever asked for that feature, nor reported a bug on it, I think that's okay.  I added it for me, and I'm breaking it for me.  I'll cry alone.

Ebuild is in the tree, intentionally holding for a test period before stabilizing.

Comment 4 Rick Farina (Zero_Chaos) 2017-10-16 14:23:42 UTC

cc: arches which I didn't stable

*** Bug 634418 has been marked as a duplicate of this bug. ***

*** Bug 619058 has been marked as a duplicate of this bug. ***

Comment 7 Sergei Trofimovich (RETIRED) 2017-10-21 10:48:09 UTC

ppc/ppc64 stable

Comment 8 Markus Meier 2017-10-24 17:38:34 UTC

arm stable, all arches done.

Thank you arches.

@ Maintainer(s): Please remove the vulnerable version from tree.

Comment 10 Rick Farina (Zero_Chaos) 2017-10-26 20:54:49 UTC

Vulnerable removed, thanks

Comment 11 Thomas Deutschmann (RETIRED) 2017-10-26 20:58:35 UTC

GLSA Vote: Yes!

New GLSA request filed.

Comment 12 GLSAMaker/CVETool Bot 2017-11-10 22:40:32 UTC

This issue was resolved and addressed in
 GLSA 201711-03 at https://security.gentoo.org/glsa/201711-03
by GLSA coordinator Aaron Bauman (b-man).