This update for wpa_supplicant fixes the security issues:
Several vulnerabilities in standard conforming implementations of the WPA2
protocol have been discovered and published under the code name KRACK. This
update remedies those issues in a backwards compatible manner, i.e. the
updated wpa_supplicant can interface properly with both vulnerable and
patched implementations of WPA2, but an attacker won't be able to exploit the
KRACK weaknesses in those connections anymore even if the other party is
still vulnerable. [bsc#1056061, CVE-2017-13078, CVE-2017-13079,
CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088]