Vulnerability identifier: #VU8840
Vulnerability risk: Medium
Exploitation vector: Local network
Exploit availability: No
Vendor: Linux Foundation
The vulnerability allows an adjacent attacker to force a supplicant to reinstall a previously used group key.
The weakness exists in the processing of the 802.11i 4-way handshake messages of the WPA and WPA2 protocols due to ambiguities in the processing of associated protocol messages. An adjacent attacker can use man-in-the-middle techniques to retransmit previously used message exchanges between supplicant and authenticator.
The vulnerability is dubbed "KRACK" attack.
Update Linux kernel to version 4.13.14 or 4.9.63.
Vulnerable software versions
Linux kernel: 3.18 - 4.13.13
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?