LM
/
meta-netmodule-wlan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

FIX: [mac80211] assure all fragments are encrypted (CVE-2020-26147) 

FIX: [mac80211] prevent mixed key and fragment cache attacks (CVE-2020-24586, CVE-2020-24587)
FIX: [mac80211] properly handle A-MSDUs that start with an RFC 1042 header
FIX: [mac80211] Mitigate A-MSDU injection attacks (CVE-2020-24588)
FIX: [mac80211] drop A-MSDUs completely with old ciphers. (CVE-2020-24588)
FIX: [mac80211] add fragment cache to sta_info
FIX: [mac80211] check defrag PN against current frame
FIX: [mac80211] prevent attacks on TKIP/WEP as well
FIX: [mac80211] do not accept/forward invalid EAPOL frames
FIX: [mac80211] extend protection against mixed key and fragment cache attacks (CVE-2020-24586, CVE-2020-24587)
FIX: [mac80211] ath10k: add CCMP PN replay protection for fragmented frames for PCIe
FIX: [mac80211] ath10k: drop fragments with multicast DA for PCIe (CVE-2020-26145)
FIX: [mac80211] ath10k: drop fragments with multicast DA for SDIO (CVE-2020-26145)
FIX: [mac80211] ath10k: drop MPDU which has discard flag set by firmware for SDIO (CVE-2020-24588)
FIX: [mac80211] ath10k: Fix TKIP Michael MIC verification for PCIe (CVE-2020-26141)
FIX: [mac80211] ath10k: Validate first subframe of A-MSDU before processing the list
FIX: [mac80211] ath11k: Clear the fragment cache during key install (CVE-2020-24587)
FIX: [mac80211] ath11k: Drop multicast fragments
FIX: [wl18xx] firmware: updated to version 8.9.0.0.88 (Fixes related to Wi-Fi FragAttacks - FRagmentation and AGgregation Attacks)

BugzId: 72727
This commit is contained in:
Patrick Walther 2021-05-12 19:50:20 +02:00
parent ab04a2ac66
commit 4fb2e1d93b
4 changed files with 1086 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
recipes-firmware/firmware-ti-wl18xx/firmware-ti-wl18xx_git.bb
View File

@ -12,7 +12,7 @@ SRC_URI += " \
file://nm-wl18xx-TIInit_11.8.32.bts \ file://nm-wl18xx-TIInit_11.8.32.bts \
" "
SRCREV = "5ec05007f2662f460f881c5868311fd3ab7e6e71" SRCREV = "bda5304cc86e9c4029f8101394d2a8b39c640f53"
S = "${WORKDIR}/git" S = "${WORKDIR}/git"

1083
recipes-kernel/mac80211/mac80211/0008-fragattack.patch Normal file
View File

File diff suppressed because it is too large Load Diff

0
recipes-kernel/mac80211/mac80211/0008-netmodule-patches.patch → recipes-kernel/mac80211/mac80211/0009-netmodule-patches.patch
View File

3
recipes-kernel/mac80211/mac80211_5.10.16-1.bb
View File

@ -22,7 +22,8 @@ SRC_URI = "http://www.kernel.org/pub/linux/kernel/projects/backports/stable/v${S
file://0005-backport-of-mwl-patches-from-openwrt.patch \ file://0005-backport-of-mwl-patches-from-openwrt.patch \
file://0006-backport-of-brcm-patches-from-openwrt.patch \ file://0006-backport-of-brcm-patches-from-openwrt.patch \
file://0007-backport-of-rtl-patches-from-openwrt.patch \ file://0007-backport-of-rtl-patches-from-openwrt.patch \
file://0008-netmodule-patches.patch \ file://0008-fragattack.patch \
file://0009-netmodule-patches.patch \
" "
SRC_URI[sha256sum] = "90005f3598b4b1fac4b0088f0b345ef2e8312df9f9f80c50aeb28497453888f5" SRC_URI[sha256sum] = "90005f3598b4b1fac4b0088f0b345ef2e8312df9f9f80c50aeb28497453888f5"