All patches available so far to protect Wi-Fi networks from KRACK
We learned that the WPA2 security protocol, the most widelyused in WiFi networks, had been compromised, basically endangering everything that was capable of connecting to a wireless network.
Through an exploit named KRACK, researcher Mathy Vanhoef showed how vulnerability can be exploited to intercept and manipulate all traffic sent by a device.
The bug had been known for several months and organizations and companies had been informed to prepare patches before the information was released to the public to prevent it from being exploited (there are still no reports that this has happened).
Yesterday we could also know that Microsoft had released a patch for all versions with Windows support and that you only need to keep the system up to date and preferably always have automatic updates active, which in cases like these demonstrate the essentials that can become.
Technically they are only completely safe so far Windows 7, Windows 8 / 8.1, Windows 10, and the latest versions of iOS. The 41% of Android devices are vulnerable, you can impact KRACK greatly Android 6.0+.
Who is updating?
Microsoft seems to be one of the few technological giants that was on top of the problem and has already solved, others offer the same vague response about patches in the coming weeks, but at least work on it.
- Microsoft : released security updates on October 10 for all those with active Windows Update.
- Apple : they have a beta patch for iOS, macOS, watchOS and tvOS that will be released in a software update over the next few weeks.
- Google : are aware of the problem and will be updating the affected devices in the coming weeks.
- Amazon : are reviewing which devices are vulnerable and will be releasing patches when necessary.
- Samsung : are aware and will be releasing patches to their devices in the coming weeks.
- Cisco : the company is investigating which products are vulnerable to KRACK. So far they have released patches for some but others are still waiting for the investigation to end.
- Linksys / Belkin : are aware and claim to be verifying details and will post instructions on their security page to tell customers how and if they need to update their products.
- Netgear : patches have been released for some of their routers, the full list here.
- Arris : they are evaluating their portfolio but they have not said when they will release patches.
- Intel : have published a list of updated WiFi drivers and patches for the affected plates.
- Nest : they are aware of the issue and will be releasing patches for their products in the coming weeks.
- Linux : a patch is available and Debian and derivatives can apply it now.
- OpenBSD was patched in July .
- FreeBSD : a patch is being worked on for the base system.
- HostAP , the driver provider for Linux has released several patches .
Companies like D-Link, TP-Link, Nvidia, AMD, Lenovo, Dell, Roku, LG, have not yet commented on it.