Apple Says 'KRACK' Wi-Fi Vulnerabilities Are Already Patched in iOS, macOS, watchOS, and tvOS Betas

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Oct 16, 2017.

  1. steve123 macrumors 6502

    Joined:
    Aug 26, 2007
  2. Roadstar macrumors 65816

    Roadstar

    Joined:
    Sep 24, 2006
    Location:
    Vantaa, Finland
    #227
    Wow, the way I read them it seems like I still have multiple vulnerable iDevices despite them receiving seemingly latest updates. This includes devices such as iPhone 6, iPad Air 2, Apple TV 4th gen, and the Apple Watch Series 0. Either they weren't vulnerable in the first place or Apple just hasn't patched them. The latter option would suck and pretty much negate the update advantage iOS has had.
     
  3. alex0002 macrumors 6502

    Joined:
    Jun 19, 2013
    Location:
    New Zealand
    #228
    Perhaps a third option:

    (i) not vulnerable in the first place
    (ii) Apple just hasn't patched them, or
    (iii) Apple didn't implement WPA2 according to specification and might be vulnerable to a modified attack, but not the original one.

    Just like with the Airport devices, we don't really know until we get an official statement from Apple.
     
  4. Roadstar macrumors 65816

    Roadstar

    Joined:
    Sep 24, 2006
    Location:
    Vantaa, Finland
    #229
    Good point. An official statement from Apple regarding this would be nice, but I'm not actually holding my breath for one.
     
  5. nutmac macrumors 68040

    Joined:
    Mar 30, 2004
    #230
    It looks like #3 is the likely answer, but that brings another question. Do older devices have correct implementation of WPA2 now?

    According to Apple's support document:
    So the first type of KRACK attack does not impact older devices. But what about the second one?
     
  6. alex0002, Nov 5, 2017
    Last edited: Nov 6, 2017

    alex0002 macrumors 6502

    Joined:
    Jun 19, 2013
    Location:
    New Zealand
    #231
    Thanks. They've updated the document since I first posted:

    WiFi: Available for: iPhone 8, iPhone 8 Plus, and iPhone X
    Not impacted: iPhone 7, iPhone 7 Plus, iPhone 6s, iPhone 6s Plus, iPhone 6, iPhone 6 Plus, iPhone SE, iPhone 5s, iPad Air and later, and iPod Touch 6th generation
    CVE-2017-13077 and CVE-2017-13078

    WiFi: Available for: iPhone 7 and later, and iPad Pro 9.7-inch (early 2016) and later
    CVE-2017-13080

    https://support.apple.com/kb/HT208222

    So it seems reasonably clear for iOS that at least the known exploits are patched (or not vulnerable) for iPhone SE, iPhone 5s, iPhone 6 and later. Still no official statements on some other devices. My Airport Express is quite new and can still be found for sale in the Apple store. Some sort of official statement is needed here.
     
  7. C DM macrumors Westmere

    Joined:
    Oct 17, 2011
    #232
    Seems like they basically added another related but separate entry for something additional that was addressed related to KRACK for iPhone 8 and X line of phones in particular, which doesn't impact older devices.
     
  8. nutmac macrumors 68040

    Joined:
    Mar 30, 2004
    #233
    But the second Wi-Fi KRACK issue does not say whether older iPhones and iPads are not impacted, which suggests the issue is not resolved.
     
  9. boppin macrumors regular

    Joined:
    Jun 14, 2008
    Location:
    Germany
  10. mpainesyd macrumors 6502

    mpainesyd

    Joined:
    Nov 29, 2008
    Location:
    Sydney, Australia
    #235
    A firmware update for Time Capsules/Airports has just been released. This addresses the KRACK vulnerability. See my earlier tips for instaling the update.
     
  11. Wolfpup macrumors 68030

    Joined:
    Sep 7, 2006
    #236
    It had been an entire year since the last firmware update, and some of the stuff fixed was from JUNE. I was really unclear on whether it was still supported, but then they're still selling it in the store, so...

    Sadly, a six month lag on fixing something is GOOD by consumer router standards lol

    I really like Apple's routers though and wish they'd keep fully supporting them/updating them, but at least for now the current models seem to be supported.
     

Share This Page