From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:60598)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1e4Crl-0005jP-IC
	for guix-patches@gnu.org; Mon, 16 Oct 2017 17:24:06 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1e4Cri-0002jb-6R
	for guix-patches@gnu.org; Mon, 16 Oct 2017 17:24:05 -0400
Received: from debbugs.gnu.org ([208.118.235.43]:35649)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1e4Crh-0002jP-VS
	for guix-patches@gnu.org; Mon, 16 Oct 2017 17:24:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1e4Crh-0006Jx-Nn
	for guix-patches@gnu.org; Mon, 16 Oct 2017 17:24:01 -0400
Subject: [bug#28869] [PATCH] gnu: wpa-supplicant: Fix "KRACK"
	key	reinstallation attacks [security fixes].
Resent-Message-ID: <handler.28869.B28869.150818901524255@debbugs.gnu.org>
From: Marius Bakke <mbakke@fastmail.com>
In-Reply-To: <09748a352729762dacb8e6171752aaa6d03df85d.1508178000.git.leo@famulari.name>
References: <09748a352729762dacb8e6171752aaa6d03df85d.1508178000.git.leo@famulari.name>
Date: Mon, 16 Oct 2017 23:23:28 +0200
Message-ID: <87lgka7pnz.fsf@fastmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
	micalg=pgp-sha512; protocol="application/pgp-signature"
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-patches/>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+kyle=kyleam.com@gnu.org>
To: Leo Famulari <leo@famulari.name>, 28869@debbugs.gnu.org

--=-=-=
Content-Type: text/plain

Leo Famulari <leo@famulari.name> writes:

> Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}.
>
> See these announcements for more information:
> https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
> https://www.krackattacks.com/
>
> * gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch,
> gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch,
> gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch
> gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch,
> gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files.
> * gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them.
> * gnu/local.mk (dist_patch_DATA): Add them.

LGTM, thanks for taking care of this.

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEu7At3yzq9qgNHeZDoqBt8qM6VPoFAlnlI1AACgkQoqBt8qM6
VPrs6Af8DUuBpbQe9+8ZBi9VRKct/TwiotmY5trMq0SzDl8WyqK3I0l0hC81NiDx
n0ctHNf9+K9Z8GgBtbXZ6hyerR3vsE8O2Um664MUNl5PdjoBAilSNZNEmiQp6uLU
FlazBV6EY2ulv4SYNX09FyG5FtvAsdNAFQn9yv1/UBEUXIC0Z8tsvxbxrpMF/2B+
WjQd6FrRu6xt8qmZmwd62Jr4M9CZ7p5WW2jVMoTFYSH244kEYf6o1bV0mfmfjZg9
jF0NKB/lS7qEPctjM273BtnRXe8K/UC2Eskvw0fUu6Ow/zlE7xEBNLlUtZO0V9tt
hAgoiyuVvG/SIbrRMYTbSGk56unlLw==
=vMme
-----END PGP SIGNATURE-----
--=-=-=--