Login
Newsletter
Werbung
Sicherheit: Mehrere Probleme in hostapd und wpa_supplicant
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in hostapd und wpa_supplicant
ID: 201711-03
Distribution: Gentoo
Plattformen: Keine Angabe
Datum: Sa, 11. November 2017, 01:41
Referenzen: https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13078
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13077
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13079
Applikationen: wpa_supplicant, hostapd

Originalnachricht

 
--nextPart24387334.DVD5tmEPxM
Content-Type: multipart/alternative;
 boundary="nextPart9771008.LUn1fV4c5e"
Content-Transfer-Encoding: 7Bit

This is a multi-part message in MIME format.

--nextPart9771008.LUn1fV4c5e
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 201711-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                           https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal
    Title: hostapd and wpa_supplicant: Key Reinstallation (KRACK)
           attacks
     Date: November 10, 2017
     Bugs: #634436, #634438
       ID: 201711-03

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

A flaw was discovered in the 4-way handshake in hostapd and
wpa_supplicant that allows attackers to conduct a Man in the Middle
attack.

Background
==========

wpa_supplicant is a WPA Supplicant with support for WPA and WPA2 (IEEE
802.11i / RSN). hostapd is a user space daemon for access point and
authentication servers.

Affected packages
=================

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
  1  net-wireless/hostapd         < 2.6-r1                  >= 2.6-r1 
  2  net-wireless/wpa_supplicant
                                  < 2.6-r3                  >= 2.6-r3 
    -------------------------------------------------------------------
     2 affected packages

Description
===========

WiFi Protected Access (WPA and WPA2) and it's associated technologies
are all vulnerable to the KRACK attacks. Please review the referenced
CVE identifiers for details.

Impact
======

An attacker can carry out the KRACK attacks on a wireless network in
order to gain access to network clients. Once achieved, the attacker
can potentially harvest confidential information (e.g. HTTP/HTTPS),
inject malware, or perform a myriad of other attacks.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All hostapd users should upgrade to the latest version:

  # emerge --sync
  # emerge --ask --oneshot --verbose ">=net-wireless/hostapd-2.6-r1"

All wpa_supplicant users should upgrade to the latest version:

  # emerge --sync
  # emerge --ask --oneshot -v ">=net-wireless/wpa_supplicant-2.6-r3"

References
==========

[  1 ] CVE-2017-13077
       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13077
[  2 ] CVE-2017-13078
       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13078
[  3 ] CVE-2017-13079
       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13079
[  4 ] CVE-2017-13080
--nextPart9771008.LUn1fV4c5e
Content-Transfer-Encoding: 7Bit
Content-Type: text/html; charset="us-ascii"

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0//EN" "http://www.w3.org/TR/REC-html40/strict.dtd">
<html><head><meta name="qrichtext" content="1"
 /><style type="text/css">
p, li { white-space: pre-wrap; }
</style></head><body style=" font-family:'Noto
 Sans'; font-size:10pt; font-weight:400; font-style:normal;">
<p style=" margin-top:12px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Gentoo Linux Security Advisory                           GLSA 201711-03</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">                                           https://security.gentoo.org/</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;"> Severity: Normal</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">    Title: hostapd and wpa_supplicant: Key Reinstallation (KRACK)</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">           attacks</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">     Date: November 10, 2017</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">     Bugs: #634436, #634438</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       ID: 201711-03</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Synopsis</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">A flaw was discovered in the 4-way handshake in hostapd and</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">wpa_supplicant that allows attackers to conduct a Man in the Middle</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">attack.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Background</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">==========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">wpa_supplicant is a WPA Supplicant with support for WPA and WPA2 (IEEE</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">802.11i / RSN). hostapd is a user space daemon for access point and</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">authentication servers.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Affected packages</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">=================</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">    -------------------------------------------------------------------</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">     Package              /     Vulnerable     /            Unaffected</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">    -------------------------------------------------------------------</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  1  net-wireless/hostapd         &lt; 2.6-r1                  &gt;= 2.6-r1 </span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  2  net-wireless/wpa_supplicant</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">                                  &lt; 2.6-r3                  &gt;= 2.6-r3 </span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">    -------------------------------------------------------------------</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">     2 affected packages</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Description</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">===========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">WiFi Protected Access (WPA and WPA2) and it's associated technologies</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">are all vulnerable to the KRACK attacks. Please review the referenced</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">CVE identifiers for details.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Impact</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">======</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">An attacker can carry out the KRACK attacks on a wireless network in</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">order to gain access to network clients. Once achieved, the attacker</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">can potentially harvest confidential information (e.g. HTTP/HTTPS),</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">inject malware, or perform a myriad of other attacks.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Workaround</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">==========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">There is no known workaround at this time.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Resolution</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">==========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">All hostapd users should upgrade to the latest version:</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  # emerge --sync</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  # emerge --ask --oneshot --verbose &quot;&gt;=net-wireless/hostapd-2.6-r1&quot;</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">All wpa_supplicant users should upgrade to the latest version:</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  # emerge --sync</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">  # emerge --ask --oneshot -v &quot;&gt;=net-wireless/wpa_supplicant-2.6-r3&quot;</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">References</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">==========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  1 ] CVE-2017-13077</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13077</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  2 ] CVE-2017-13078</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13078</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  3 ] CVE-2017-13079</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13079</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  4 ] CVE-2017-13080</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13080</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  5 ] CVE-2017-13081</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13081</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  6 ] CVE-2017-13082</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13082</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  7 ] CVE-2017-13084</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13084</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  8 ] CVE-2017-13086</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13086</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[  9 ] CVE-2017-13087</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13087</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[ 10 ] CVE-2017-13088</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13088</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">[ 11 ] KRACK Attacks Website</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">       https://www.krackattacks.com/</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Availability</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">============</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">This GLSA and any updates to it are available for viewing at</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">the Gentoo Security Website:</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;"> https://security.gentoo.org/glsa/201711-03</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Concerns?</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">=========</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Security is a primary focus of Gentoo Linux and ensuring the</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">confidentiality and security of our users' machines is of utmost</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">importance to us. Any security concerns should be addressed to</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">security@gentoo.org or alternatively, you may file a bug at</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">https://bugs.gentoo.org.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">License</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">=======</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Copyright 2017 Gentoo Foundation, Inc; referenced text</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">belongs to its owner(s).</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">The contents of this document are licensed under the</span></p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
 margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">Creative Commons - Attribution / Share Alike license.</span></p>
<p style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px;
 margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; ">&nbsp;</p>
<p style=" margin-top:0px; margin-bottom:12px; margin-left:0px; margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><span style=" font-family:'Hack'; color:#000000;">http://creativecommons.org/licenses/by-sa/2.5</span></p></body></html>
--nextPart9771008.LUn1fV4c5e--

--nextPart24387334.DVD5tmEPxM
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part.
Content-Transfer-Encoding: 7Bit

-----BEGIN PGP SIGNATURE-----

iQEzBAABCAAdFiEEiDRK3jyVBE/RkymqpRQw84X1dt0FAloGKtUACgkQpRQw84X1
dt0eJQf+IfbzR7cFGXwarNfDrIgXp12vxGC9eLuZxqEZa/ar1bqahruJ7Tg6ky7x
AB+5FQg1QeNaVhlM6O5UcOLeHvAz9qY5+upbbMtvJKBXYICzThr+6LKBvSyqnFMX
F07OFWDaGw32UkeWtFVNWoY+TCQwFvjZ+ru/oH89RbnAoj7ePU4ar752A9wOJ5c9
PtQUpQMZELAJ6zXDwwmEosSmt0SeNRuvrPmCzy8dKN8Ov99xccJFxBxHFzAaQj5f
Zvi0WsKOHuOVM4qSDAzWeBHffBgglaA7mBl+c6ft+Qy4jF2R+gOBtIHrCp3vLedw
dmWc7rACAtIs8uHfR44xfviHEyBcJg==
=W33a
-----END PGP SIGNATURE-----

--nextPart24387334.DVD5tmEPxM--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung