LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Mobile
User Name
Password
Linux - Mobile This forum is for the discussion of all topics relating to Mobile Linux. This includes Android, Tizen, Firefox OS, Sailfish OS, Maemo, MeeGo, Ubuntu Mobile, WebOS, Open Mobile Alliance and other similar projects and products.
A reminder that LQ now has a dedicated Android sister site: AndroidQuestions.org

Notices


Reply
  Search this Thread
Old 10-26-2017, 09:42 AM   #1
business_kid
LQ Guru
 
Registered: Jan 2006
Location: Ireland
Distribution: Slackware & Android
Posts: 8,691

Rep: Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886
WPA2 Krack on Android - patched yet


I have a mobile (last update from Samsung 24/10/17) and a Google Nexus 9 on Android-7.1.1. There's often monthly bug fixes for a while after a major update. I personally doubt if google and then Samsung applied tested and released the fix so fast, as the patch only went on github October 5th.

I have thought that the most vulnerable place for me is in a restaurant with wifi, if it's password protected. Does anyone know if and when Google is applying a fix to this?
 
Old 10-28-2017, 08:58 PM   #2
frankbell
LQ Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Debian, Mageia, and whatever VMs I happen to be playing with
Posts: 12,861
Blog Entries: 18

Rep: Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339Reputation: 3339
The answer to your question seems to be a resounding, "maybe."

A web search for wpa2 android krack patch will turn up a number of articles on this topic. I hesitate to pick just one or two because many of them are at sites I'm not familiar with.

This one from ZD Net might be a good place to start: http://www.zdnet.com/article/here-is...ble-right-now/
 
1 members found this post helpful.
Old 10-29-2017, 05:35 AM   #3
business_kid
LQ Guru
 
Registered: Jan 2006
Location: Ireland
Distribution: Slackware & Android
Posts: 8,691

Original Poster
Rep: Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886Reputation: 886
Yes, maybe. I take as "Not really." The source patch is out there (End Oct 2017), but the binarties haven't percolated through yet. For linux users, there's no difficulty - compilers are loaded on every distro.

The zdnet page has many links, and is a good reference. The last time I checked there it was itty-bitty. I see Samsung is behind the game on this one, waiting for Google. It's surely not a major deal to patch wpa2 themselves

My exposure is limited. On public wifi, wpa2 is not invoked. I am vulnerable in only one place at the moment, where I have the wifi password, and in the company of others who have mobiles within range. I can switch off wifi as a short term measure. I'm not bothering to patch & rebuild wpa_supplicant because I'm fairly housebound, and surrounded by low tech neighbours running obsolete versions of windows or nothing at all.

And it's not a hack as such, it's still got to upload something, which Android to it's credit has made extremely difficult. Let's hope Google updates wpa2 for previous versions of Android unlikely to get manufacturer updates (e.g.4.4.2).

Last edited by business_kid; 10-29-2017 at 05:36 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Krack attack patched for stable and -current hitest Slackware 16 11-03-2017 09:49 PM
LXer: openSUSE Tumbleweed Linux OS Patched Against WPA2 KRACK Bug, GCC 6 Now Removed LXer Syndicated Linux News 0 10-23-2017 04:51 AM
WPA2 KRACK Bug (security update) zk1234 4MLinux 1 10-17-2017 05:27 PM
LXer: Ubuntu, Debian, Fedora and elementary OS All Patched Against WPA2 KRACK Bug LXer Syndicated Linux News 0 10-17-2017 05:01 PM
LXer: Android-Powered G1 Mobile Phone Flaw Patched LXer Syndicated Linux News 0 11-03-2008 10:21 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Mobile

All times are GMT -5. The time now is 01:45 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration