Solved: Re: CSCvf71749 - Key Reinstallation attacks against WPA protocol - 1

Robin Thomas · ‎10-25-2017

Dear All,

We have 3 nos of 8821 phones running firmware (sip8821.11-0-2SR2-1) however the bug id says the affected firmware as unknown. should we consider upgrading the firmware to next fix release or wait for next advisory or rather open a TAC as its severe termed by Cisco.

Many thanks for your support

Robin

Leo Laohoo · ‎10-26-2017

The vulnerability is fixed on 11.0(3)SR5. Anything earlier than this version is confirmed to be vulnerable.

View solution in original post

Leo Laohoo · ‎10-25-2017

Cisco has already released the software fix for the 8821, SIP version 11.0(3)SR5.

Robin Thomas · ‎10-25-2017

Dear Leo

Many Thanks for Prompt reply, it is still unknown the version we are running is affected, so should we still move to the fix release or wait for Cisco to advise ?

Regards

Leo Laohoo · ‎10-26-2017

The vulnerability is fixed on 11.0(3)SR5. Anything earlier than this version is confirmed to be vulnerable.

Leo Laohoo · ‎11-01-2017

As of 01 November 2017, 8821 firmware 11.0(3)SR5 has been classified as "Deferred" due to CSCvg46824.

Leo Laohoo · ‎12-07-2017

@Leo Laohoo wrote:

As of 01 November 2017, 8821 firmware 11.0(3)SR5 has been classified as "Deferred" due to CSCvg46824.

11.0(3)SR6 has been released.

This version should also incorporate the fix for KRACK.