The issue is in the WiFi standard/protocol itself. By patching your client, you should be immune to the attack even if you connect to a vulnerable/unpatched router or AP.
That is why client patches are very much relevant.
It seems Microsoft actually quietly slipped it into the Oct 10 Patches (it just wasn't announced because it was ahead of the disclosure)
https://www.pcworld.com/article/3233255 ... s-pcs.html“Microsoft released security updates on October 10th and customers who have Windows Update enabled and applied the security updates, are protected automatically. We updated to protect customers as soon as possible, but as a responsible industry partner, we withheld disclosure until other vendors could develop and release updates.”