Solved: Re: Cisco plans for tackling krack attacks

Mark Elsen · ‎10-18-2017

- Are their any plans in any of the current aire-os release trains , for fixing :

https://www.krackattacks.com/

M.

-- Let everything happen to you
   Beauty and terror
      Just keep going
     No feeling is final
Reiner Maria Rilke (1899)

Leo Laohoo · ‎10-18-2017

@Mark Elsen wrote:

- Are their any plans in any of the current aire-os release trains , for fixing :

https://www.krackattacks.com/

M.

View solution in original post

jturner2720 · ‎10-18-2017

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa is the relevant Cisco advisory, updates are coming.

Leo Laohoo · ‎10-18-2017

@Mark Elsen wrote:

- Are their any plans in any of the current aire-os release trains , for fixing :

https://www.krackattacks.com/

M.

Timothy Burns · ‎10-18-2017

I am currently running 5520's running 8.4.100 code. Up to this point I have seen no reference about this version. Has Cisco abandoned this?

Our plan is to get to 8.5 fixed release when it comes out. I just thought it was odd that I haven't seen anything on 8.4.

Leo Laohoo · ‎10-18-2017

8.4 is vulnerable but Cisco won't fix this release. You're better off using 8.5.X.X.

Cisco has classed the 8.4 a "short live" and this specific version is just a "one off".

Leo Laohoo · ‎10-23-2017

Software fix for the KRACK vulnerability is now available for download. They are 8.0.152.0, 8.2.164.0, 8.3.132.0 and 8.5.105.0.

Leo Laohoo · ‎10-29-2017

A quick update to anyone reading this thread and intending to upgrade to 8.3.132.0:
Cisco TAC has recommended anyone to HOLD OFF upgrading to 8.3.132.0. TAC has identified a Severity 1 bug which causes the controller to crash after upgrading to 8.3.132.0.
There are no reported issues in regards to other versions.