KRACK (Key Reinstallation Attacks) is a security vulnerability that targets a key step in the Wi-Fi authentication protocol to break security encryption. These vulnerabilities could enable a proximate attacker (within Wi-Fi range of both the client device and the access point) to access and tamper with Wi-Fi packets over connections that are protected by WPA/WPA2 encryption.
KRACK may affect computers, mobile phones, and other IoT devices running both Android and Windows operating systems. If your device supports Wi-Fi, it is most likely affected.
| Reference No.: | Vulnerability Release Date: |
| 02-1017-07 | 10/16/2017 |
Detailed information about this vulnerability, recommendations, and instructions for remediation
Click the '+' to expand sections
The October OTA is only available for OnePlus 3/3T for Android 8.0 Oreo firmware update released under the Open Beta program. Even the the OnePlus 5 is on the September patch with Oxygen OS 4.5.13. Today, Oxygen OS 3.6.1 is rolling out for OnePlus 2 with latest security patch and KRACK WPA2 vulnerability fix. Google to patch devices vulnerable to KRACK flaw A weakness in the WPA2 protocol places virtually all wireless-enabled devices at risk. Google says it will patch its Android gadgets in 'the coming. The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2017-11-06 or later address all of these issues. Security patches for the KRACK vulnerabilities are provided under the 2017-11-06 security patch level.
Locate your product below to view release schedule and access updates. If your product is not listed, Contact Technical Support.
+ Android Nougat Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
TC51 | 01.39.02 (full image) | 17-Nov-17 | GMS | Non-GMS |
TC70x | 01.39.02 (full image) | 17-Nov-17 | GMS | Non-GMS |
+ Android Marshmallow Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
TC51 | 21.04.01 | 6-Nov-17 | GMS | Non-GMS |
TC56 | 21.04.01 | 6-Nov-17 | GMS | Non-GMS |
TC70x | 21.04.01 | 6-Nov-17 | GMS | Non-GMS |
TC75x | 21.04.01 | 6-Nov-17 | GMS | Non-GMS |
TC51 | 15.01.07 | 13-Nov-17 | GMS | Non-GMS |
TC56 | 15.01.07 | 13-Nov-17 | GMS | Non-GMS |
TC70x | 15.01.07 | 13-Nov-17 | GMS | Non-GMS |
TC75x | 15.01.07 | 13-Nov-17 | GMS | Non-GMS |
ET50 | 01.08.20 | 14-Nov-17 | GMS | Non-GMS |
ET55 | 01.08.20 | 14-Nov-17 | GMS | Non-GMS |
+ Android Lollipop Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
WT6000 | 04.10.03 | 3-Nov-17 | Non-GMS |
MC40 Voice | 03.07.03 | 6-Nov-17 | Non-GMS |
TC70 | 02.10.02 | 6-Nov-17 | GMS | GMS FIPS | Non-GMS | Non-GMS FIPS |
TC75 | 02.10.02 | 6-Nov-17 | GMS | Non-GMS | Non-GMS FIPS |
MC40 Voice | 02.11.04 | 13-Nov-17 | Non-GMS |
TC8000 | 02.10.02 | 13-Nov-17 | GMS | Non-GMS |
ET50 | 01.08.21 | 17-Nov-17 | GMS | Non-GMS |
| ET55 | 01.10.11 | 17-Nov-17 | GMS | Non-GMS |
| MC18 | 01.11.02 | 20-Nov-17 | Non-GMS |
| CC5500 | 2.0.2.7 | 27-Nov-17 | Non-GMS |
| MC18 | 2.09.02 | 28-Nov-17 | Non-GMS |
+ Android KitKat Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
TC70 | 19.03 | 3-Nov-17 | GMS | Non-GMS |
MC67 | 2.19.01 | 6-Nov-17 | Premium | Premium FIPS |
TC55 | 2.68G | 10-Nov-17 | GMS | Non-GMS |
MC18 | 02.14.0120 | 20-Nov-17 | Non-GMS |
MC40 | 02.13.0701 (070116) | 20-Nov-17 | Voice | FIPS |
MC92 Premium | 02.13.1108 | 20-Nov-17 | Non-GMS |
TC75 | 15.06 | 20-Nov-17 | GMS | Non-GMS |
TC8000 | 02.00.00 | 20-Nov-17 | Non-GMS |
+ Android Jellybean Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
TC55 | 1.79 | 20-Nov-17 | GMS | Non-GMS |
MC32 | 00.57.12 | 6-Dec-17 | Fusion for Jellybean |
MC40 | 06.10.16 | 6-Dec-17 | Fusion for Jellybean |
MC67 | 06.01.16 | 6-Dec-17 | Fusion for Jellybean |
CC5000 | 1.3.0.25 | 6-Dec-17 | Non-GMS |
+ Windows CE 5.0/6.0/7.0 Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
MC32N0 | All | 17-Nov-17 | Fusion for CE 7.0 |
MC92N0 | All | 17-Nov-17 | Fusion for CE 7.0 |
WT41N0 | All | 17-Nov-17 | Fusion for CE 7.0 |
| VC70N0 | All | 20-Nov-17 | Fusion for CE 7.0 |
MC2180 | 04.34.0122 | 20-Nov-17 | Fusion for CE 6.0 |
| MC40N0 | 20-Nov-17 | Please ask your Zebra representative | |
| VH10/XT15 | 12.3.1 | 20-Nov-17 | VH10 CE 6.0 | XT15 CE 6.0 |
| MC18N0 | 02.57.07 | 22-Nov-17 | Fusion for CE 7.0 |
| SB1 | 03.01.45 | 22-Nov-17 | Fusion for CE 6.0 |
| MC17 | 05.35.22 | 29-Nov-17 | Fusion for CE 5.0 |
| MC31 | 06.37.13 | 29-Nov-17 | Fusion for CE 6.0 |
| MC91 | 04.37.13 | 29-Nov-17 | Fusion for CE 6.0 |
| Workabout Pro 4 - 7528X | 4.1 | 29-Nov-17 | WAP 4 CE 6.0 |
| MK500 | 1.30.0014 | Please contact your Zebra representative | CE 5.0 |
| MK3100 | 01.47.31 | 29-Nov-17 | Fusion for CE 7.0 |
| MK4000 | 01.30.0006 | Please contact your Zebra representative | CE 5.0 |
| MT2090 | 01.25.36 | Please contact your Zebra representative | CE 5.0 |
| Please contact your Zebra representative |
+ Windows Embedded Handheld (WEHH) 6.5 Mobile Device Updates
What Is Krack On Android
| Device | BSP | Date Available | Download |
|---|---|---|---|
MC67NA | All | 17-Nov-17 | Fusion for WEHH 6.5 |
MC92N0 | All | 20-Nov-17 | |
| MC55E0 | All | 20-Nov-17 | Fusion for WEHH 6.5 |
| Omni XT15 | 8.2.1 | 20-Nov-17 | WEHH 6.5 |
| MC55N0 | 03.47.12 | 22-Nov-17 | Fusion for WEHH 6.5 |
MC31 | 06.47.20 | 29-Nov-17 | |
MC55 | 03.38.04 | 29-Nov-17 | |
MC55A0 | 04.47.10 | 29-Nov-17 | |
MC75 | 29-Nov-17 | ||
MC75Ax | 04.47.04 | 29-Nov-17 | |
MC91 | 04.47.12 | 29-Nov-17 | |
MC95 | 06.47.12 | 29-Nov-17 | |
VC609x | 81.38.0010 | 29-Nov-17 | |
MC45 | 04.17.0004 | 30-Nov-17 | |
| MC65 | 05.48.0002 | 30-Nov-17 | Fusion for WEHH 6.5 |
| Workabout Pro 4 - 7528X | 4.1 | 1-Dec-17 | WEHH 6.5 |
| ES400 | 04.47.0002 | 6-Dec-17 | Fusion for WEHH 6.5 |
+ Windows Embedded Handheld (WEHH) 6.1 Mobile Device Updates
| Device | BSP | Date Available | Download |
|---|---|---|---|
MC31 | 06.47.20 | 27-Nov-17 | |
MC5590 | 03.38.04 | 27-Nov-17 | |
MC55A0 | 04.47.10 | 27-Nov-17 | |
MC75 | 27-Nov-17 | ||
MC91 | 04.47.12 | 27-Nov-17 | |
MC95 | 06.47.12 | 27-Nov-17 | |
VC609x | 81.38.0010 | 27-Nov-17 |
Ufo Alien Invasion For Android Patch
+ Windows 7, Windows 8.1, Windows 10 Mobile Device Updates
Updates for products running Windows 7, Windows 8 and Windows 10 are available from Microsoft. This includes:
- ET5X (Windows 8.1 and Windows 10)
- TC70x (Windows 10)
- VC80 (Windows 7 and Windows 10)
Advisory is CVE-2017-13080.
+ Desktop Printer Updates
| Printer | Date Available | Download |
|---|---|---|
ZD420D/ZD420C/ZD420T | 1-Nov-17 | ZD420 |
ZD620T | 1-Nov-17 | ZD620 |
| ZD500 | 1-Nov-17 | ZD500 |
HC100 | Please contact your Zebra representative |
Game Patch Download
+ Industrial Printer Updates
| Printer | Date Available | Download |
|---|---|---|
ZT200 Series | 1-Nov-17 | ZT220 | ZT230 |
ZT400 Series | 1-Nov-17 | ZT410 | ZT420 |
| ZT500 Series | 1-Nov-17 | ZT510 |
| ZT600 Series | 1-Nov-17 | ZT610 | ZT620 |
| 105SLPlus | Please contact your Zebra representative | |
| 110XI4/140Xi4/170Xi4/220Xi4 | Please contact your Zebra representative | |
ZM400/ZM600 | Please contact your Zebra representative |
+ Mobile Printer Updates
| Printer | Date Available | Download |
|---|---|---|
iMZ Series | 1-Nov-17 | iMZ220 | iMZ320 |
QLN Series | 1-Nov-17 | QLn220 | QLn320 | QLn420 |
| QLN Healthcare Series | 1-Nov-17 | QLn220 Healthcare | QLn320 Healthcare |
| ZQ300 Series | 1-Nov-17 | ZQ320 |
ZQ500 Series | 1-Nov-17 | ZD500 | ZD500R |
+ RFID Printers and Print Engine Updates
| Printer | Date Available | Download |
|---|---|---|
| ZD500R RFID Printer | 1-Nov-17 | ZD500R |
ZE500R Print Engine | Please contact your Zebra representative | |
RZ600 RFID Printer | Please contact your Zebra representative | |
| R110Xi4 RFID Printer | Please contact your Zebra representative | |
RZ400 RFID Printer | UPlease contact your Zebra representative |
+ China-Only Printers
| Printer | Date Available | Download |
|---|---|---|
| ZR300 Series | 1-Nov-17 | ZR338 |
ZR600 Series | 1-Nov-17 | ZR628 | ZR638 |
ZR600 Healthcare Series | 1-Nov-17 | ZR628 Healthcare | ZR638 Healthcare |
| ZT200 Series | 1-Nov-17 | ZT210 | ZT230 |
Disclaimer: Zebra makes every attempt to release security updates on or about the time that Google releases its respective security bulletin. However, delivery time of security updates may vary depending on the region, product model, and third party software suppliers. Under some circumstances, the OS must be updated to the latest maintenance release prior to installing the security updates. Individual product updates will provide specific guidance.
Unless otherwise noted, there have been no reports of active customer exploitation or abuse from these newly reported issues.
Krack Patch Updates
Are you aware of a potential security issue with a Zebra Technologies product?