As BT don't publish release notes for Hub upgrades, who knows.

As that paper is 6 years old and suggests domestic routers shouldn't be vulnerable, I suspect you are safe from the villains that park outside your house.

Noted but not an answer for my question.

I'd imagine that a major communication company is on top of notable security threats. We've been with BT for 8 years and haven't been hacked yet 

KRACK relied on an oversight in WPA2 (WiFi) authentication, and in simple terms, the fix was to delay retry times and limits.  Initial fixes often came from router manufacturers but more recently have been baked into the code supplied to purchasers of chipsets by the manufacturers.

Thanks to improvements in processing power WPA2 is still breakable, but it takes time!  What's far easier is to exploit WPS!