kernel: wifi: brcmfmac: validate bsscfg indices in IF events

A flaw was found in the Linux kernel's brcmfmac Wi-Fi driver. This vulnerability occurs because the driver fails to properly validate bsscfg indices in interface IF events. An attacker could exploit this by sending a specially crafted IF event with an invalid bsscfg index, which could lead to an...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

The brcm80211 component in the Linux kernel, from version 6.5.10 onwards, has a use-after-free issue in the code for disconnecting devices via hotplug i.e., removing the USB connection. For attackers who have physical access and local privileges, “this could be exploited in a real-world scenario....

Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: brcmac: cfg80211 – Pass the PMK in binary instead of hex. It appears that the hex-based passphrase mechanism does not work on newer chips/firmwares e.g., BCM4387. There was actually a simpler way to pass the data in binary,...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15

A buffer overflow vulnerability was discovered in the Linux kernel’s Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. It can allow a local user to crash the system or escalate their privileges...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-010814)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010814 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode Currently, whenever...

NewStart CGSL MAIN 6.06 (SP) : linux-firmware Multiple Vulnerabilities (NS-SA-2026-0017)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has linux-firmware packages installed that are affected by multiple vulnerabilities: - Broadcom BCM43xx Wi-Fi chips allow remote attackers to execute arbitrary code via unspecified vectors, aka the Broadpwn issue. CVE-2017-9417 - A remo...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004285)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004285 advisory. The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002542)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002542 advisory. A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References: B-V2017060101...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000185)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000185 advisory. The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receive...

kernel: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()

A use after free exists in the wifi module of the linux kernel in the function brcmfnetdevstartxmit,thereby leading to damage to system availability and integrity...

kernel: wifi: brcmfmac: Check the return value of of_property_read_string_index()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the return value of ofpropertyreadstringindex Somewhen between 6.10 and 6.11 the driver started to crash on my MacBookPro14,3. The property doesn't exist and 'tmp' remains uninitialized, so we pass a random...

SUSE-SU-2025:03613-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. - CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev-devname,shortname...

SUSE CVE-2022-50551

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential shift-out-of-bounds in brcmffwallocrequest This patch fixes a shift-out-of-bounds in brcmfmac that occurs in BITchiprev when a 'chiprev' provided by the device is too large. It should also not be equ...

EUVD-2017-1178

Malware in sbrugna...

EUVD-2019-18877

Malware in sbrugna...

EUVD-2019-18875

Malware in sbrugna...

EUVD-2019-18874

Malware in sbrugna...

EUVD-2019-18876

Malware in sbrugna...

EUVD-2017-1179

Malware in sbrugna...

NewStart CGSL MAIN 6.06 : linux-firmware Multiple Vulnerabilities (NS-SA-2025-0212)

The remote NewStart CGSL host, running version MAIN 6.06, has linux-firmware packages installed that are affected by multiple vulnerabilities: - Broadcom BCM43xx Wi-Fi chips allow remote attackers to execute arbitrary code via unspecified vectors, aka the Broadpwn issue. CVE-2017-9417 - A remote...