wpa_supplicant-2.6-5.el7.1

The wpa_supplicant packages contain an 802.1X Supplicant with support for WEP,
WPA, WPA2 (IEEE 802.11i / RSN), and various EAP authentication methods. They
implement key negotiation with a WPA Authenticator for client stations and
controls the roaming and IEEE 802.11 authentication and association of the
WLAN driver.

Security Fix(es):

* A new exploitation technique called key reinstallation attacks (KRACK) affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit these attacks to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by manipulating cryptographic handshakes used by the WPA2 protocol. (CVE-2017-13077, CVE-2017-13078, CVE-2017-13080, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088)

Asianux would like to thank CERT for reporting these issues. Upstream
acknowledges Mathy Vanhoef (University of Leuven) as the original reporter of
these issues.

CVE-2017-13077
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the
Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way
handshake, allowing an attacker within radio range to replay, decrypt,
or spoof frames.
CVE-2017-13078
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the
Group Temporal Key (GTK) during the four-way handshake, allowing an
attacker within radio range to replay frames from access points to
clients.
CVE-2017-13080
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the
Group Temporal Key (GTK) during the group key handshake, allowing an
attacker within radio range to replay frames from access points to
clients.
CVE-2017-13082
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r
allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key
(TK) during the fast BSS transmission (FT) handshake, allowing an
attacker within radio range to replay, decrypt, or spoof frames.
CVE-2017-13086
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the
Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS
handshake, allowing an attacker within radio range to replay, decrypt,
or spoof frames.
CVE-2017-13087
Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows
reinstallation of the Group Temporal Key (GTK) when processing a
Wireless Network Management (WNM) Sleep Mode Response frame, allowing
an attacker within radio range to replay frames from access points to
clients.
CVE-2017-13088
Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows
reinstallation of the Integrity Group Temporal Key (IGTK) when
processing a Wireless Network Management (WNM) Sleep Mode Response
frame, allowing an attacker within radio range to replay frames from
access points to clients.