EUVD-2026-32881

In the Linux kernel, the following vulnerability has been resolved: wifi: b43: enforce bounds check on firmware key index in b43rx The firmware-controlled key index in b43rx can exceed the dev-key array size 58 entries. The existing B43WARNON is non-enforcing in production builds, allowing an...

ROS-20260414-73-0032

A vulnerability in the brcmfgetassocies function in the drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c module of the Broadcom wireless adapter driver of the Linux operating system kernel is related to reading beyond buffer boundaries. Exploitation of the vulnerability could allow an...

ROS-20260119-7351

A vulnerability in the drivers/net/wireless/broadcom/brcm80211/brcmfmac/of.c component of the Linux operating system kernel is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002330)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002330 advisory. Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers t...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002632)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002632 advisory. The brcmfcfg80211mgmttx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denia...

EUVD-2017-1094

Malware in sbrugna...

EUVD-2016-3515

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987049)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987049 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/broadcom: Fix potential NULL dereference in srthermalprobe platformgetresource ma...

Linux Distros Unpatched Vulnerability : CVE-2023-53344

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: bcm: bcmtxsetup: fix KMSAN uninit-value in vfswrite Syzkaller reported the following issue: ===================================================== BUG: KMSA...

CVE-2022-50358

The CVE-2022-50358 issue affects the Linux kernel driver brcmfmac. When the dongle reports an invalid max_flowrings value (greater than 256) during firmware initialization, the host may read an abnormal number and trigger a kernel panic when performing iowrite to initialize the dongle ring. The v...

Linux Distros Unpatched Vulnerability : CVE-2017-0786

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References:...

UBUNTU-CVE-2025-37911

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix out-of-bound memcpy during ethtool -w When retrieving the FW coredump using ethtool, it can sometimes cause memory corruption: BUG: KFENCE: memory corruption in bnxtgetcoredump+0x3ef/0x670 bnxten Corrupted memory at...

kernel: can: bcm: Fix UAF in bcm_proc_show()

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcmprocshow BUG: KASAN: slab-use-after-free in bcmprocshow+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 230 Hardwar...

kernel: can: bcm: Fix UAF in bcm_proc_show()

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcmprocshow BUG: KASAN: slab-use-after-free in bcmprocshow+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 230 Hardwar...

CVE-2022-49459 thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe

In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/broadcom: Fix potential NULL dereference in srthermalprobe platformgetresource may return NULL, add proper check to avoid potential NULL dereferencing...

UBUNTU-CVE-2023-1380

A slab-out-of-bound read problem was found in brcmfgetassocies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when associnfo-reqlen data is bigger than the size of the buffer, defined as WLEXTRABUFMAX, leading to a denial of service...

SUSE CVE-2019-9503

The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the iswlceventframe function will cause this frame to be discarded and unprocessed. I...

Driver Disk for Broadcom bnxt_en-1.8.29 - For XenServer 7.x CR

Who Should Install this Driver Disk? Customers running a Citrix XenServer 7.x Current Release who use Broadcom's bnxten driver and wish to use the latest version of the following: Driver Module| Version ---|--- bnxten| 1.8.29 Issues Resolved In this Driver Disk Includes general enhancements and b...

CVE-2019-9501

The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger than 32 bytes, a heap buffer overflow is triggered in wlcwpasupeapol. In the worst case scenario, by sending specially-crafted WiFi packets, a remote,...

DEBIAN-CVE-2019-9503

The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the iswlceventframe function will cause this frame to be discarded and unprocessed. I...