Project

General

Profile

Everyone is vunerable to wpa_supplicant KRACK Attack

Added by Bugmenot Bugmenot over 6 years ago

...
We discovered serious weaknesses in WPA2, a protocol that secures all modern protected Wi-Fi networks. An attacker within range of a victim can exploit these weaknesses using key reinstallation attacks (KRACKs). Concretely, attackers can use this novel attack technique to read information that was previously assumed to be safely encrypted. This can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on. The attack works against all modern protected Wi-Fi networks. Depending on the network configuration, it is also possible to inject and manipulate data. For example, an attacker might be able to inject ransomware or other malware into websites...

During our initial research, we discovered ourselves that Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and others, are all affected by some variant of the attacks. For more information about specific products, consult the database of CERT/CC, or contact your vendor.

...

https://www.krackattacks.com/

Replicant is affected. Please patch!

Opened Ticket: https://redmine.replicant.us/issues/1841


Replies (5)

RE: Everyone is vunerable to wpa_supplicant KRACK Attack - Added by Fil Lupin over 6 years ago

Thank you for reporting the news.
Since the weakness is linked to the protocol and not the implementation, I understand the solution seems either to enhance the WPA2 protocol or waiting for the research community to enhance WPA2.
Would you see another solution?

RE: Everyone is vunerable to wpa_supplicant KRACK Attack - Added by Jeremy Rand over 6 years ago

Fil Lupin wrote:

Thank you for reporting the news.
Since the weakness is linked to the protocol and not the implementation, I understand the solution seems either to enhance the WPA2 protocol or waiting for the research community to enhance WPA2.
Would you see another solution?

Marek answered this in the issue ticket.

RE: Everyone is vunerable to wpa_supplicant KRACK Attack - Added by Fil Lupin over 6 years ago

I read somewhere that Windows is less harmed than GNU/Linux because of the implementation so it seems some implentations allow less damages. If I remember well, one can forbid to reinitialize keys for instance.

Note that this solution should be impemented at the wifi level in android and so replicant is not the good level.

RE: Everyone is vunerable to wpa_supplicant KRACK Attack - Added by Jeremy Rand over 6 years ago

Fil Lupin wrote:

I read somewhere that Windows is less harmed than GNU/Linux because of the implementation so it seems some implentations allow less damages. If I remember well, one can forbid to reinitialize keys for instance.

Note that this solution should be impemented at the wifi level in android and so replicant is not the good level.

It's not specifically GNU or Linux that causes the increased harm, it's wpa_supplicant (which happens to be often used on GNU/Linux, but is also used on other non-GNU/Linux systems such as Android/Linux). The issue is fixed on latest upstream wpa_supplicant.

RE: Everyone is vunerable to wpa_supplicant KRACK Attack - Added by Kurtis Hanna over 5 years ago

This security issue has been fixed a long time ago, but I figured I'd mention it in this forum thread in case someone sees it and doesn't click on the issue link to see that it was resolved. https://redmine.replicant.us/issues/1841

    (1-5/5)