The Graveyard - Products No Longer Supported > DIR-885L

DIR-885L KRACK Firmware v1.21B03 BETA Released

(1/5) > >>

GreenBay42:
BETA firmware v1.10B01 has been released. This firmware is a security patch for the WPA2 Vulnerability (KRACK).

Firmware - ftp://FTP2.DLINK.COM/SECURITY_ADVISEMENTS/DIR-885L/REVA/DIR-885L_REVA_FIRMWARE_PATCH_v1.21B03_BETA.zip


Release Notes:

Problems Resolved:
A WPA2 wireless protocol vulnerability was reported to CERT//CC and public disclosed as: VU#228519 - Wi-Fi Protected Access II (WPA2) handshake traffic can be manipulated to induce nonce and session key reuse.

The following CVE IDs have been assigned to VU#228519. These vulnerabilities in the WPA2 protocol:
• CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake
• CVE-2017-13078: reinstallation of the group key in the Four-way handshake
• CVE-2017-13079: reinstallation of the integrity group key in the Four-way handshake
• CVE-2017-13080: reinstallation of the group key in the Group Key handshake
• CVE-2017-13081: reinstallation of the integrity group key in the Group Key handshake
• CVE-2017-13082: accepting a retransmitted Fast BSS Transition Re-association Request and reinstalling the pairwise key while processing it
• CVE-2017-13084: reinstallation of the STK key in the PeerKey handshake
• CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake
• CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
• CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame

happyhere:

anyone here have tried this newer firmware?  it is not yet showing in router's auto update firmware page.

GreenBay42:
Correct. This is still considered a BETA firmware which is not pushed through the auto update server.

I haven't heard of any issues with the beta. If it doesn't work you can always downgrade back to the older version.

hydra3333:
thank you for the information.

happyhere:
any DIR-885L owner who was  braved enough to update to v1.21B03 ?   

I am still on v1.20 for more 18 months now and find it stable, if aint broke then dont fix motto. 
Anyway, yes I would like to have that KRACK fix.
But this 885L is my main router with 25 to 35 devices (e.g. repeater, AP, IP cams, IOT, smart devices, pcs, phones, etc). Downtime will be nightmare for households users, seems internet is a must thing now :)

I really love this 885L, the CPU is great and able to handle video calls with ease even with dozens of devices, qos off.

Navigation

[0] Message Index

[#] Next page

Go to full version