39 matches found
DEBIAN-CVE-2019-9503
The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the iswlceventframe function will cause this frame to be discarded and unprocessed. I...
Heap overflow
The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmfwowlndresults...
USN-3630-2 linux-hwe, linux-gcp, linux-oem vulnerability
USN-3630-1 fixed a vulnerability in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. It was discovered that the Broadcom UniMAC MDIO bus controller driver in the Linux kernel did...
Google Android Broadcom bcmdhd Driver Information Disclosure Vulnerability
Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Broadcom Bcmdhd driver is a Broadcom WiFi driver used in the... Broadcom Bcmdhd driver is an American Broadcom Broadcom...
Information disclosure
A information disclosure vulnerability in the Broadcom bcmdhd driver. Product: Android. Versions: Android kernel. Android ID: A-71359108. References: B-V2018010501...
Privilege escalation
An elevation of privilege vulnerability in the Broadcom wireless driver. Product: Android. Versions: Android kernel. Android ID A-63930471. References: BC-V2017092501...
Google Android Broadcom Component Elevation of Privilege Vulnerability (CNVD-2017-36944)
Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handheld Alliance OHA, in which the Broadcom driver is used. Broadcom driver is a Broadcom driver component for Broadcom devices. An elevati...
Information disclosure
A information disclosure vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37305578. References: B-V2017052301...
Google Android Broadcom Component Elevation of Privilege Vulnerability (CNVD-2017-31744)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, and Broadcom Wi-Fi driver is a Broadcom-developed Wi-Fi driver module used in it. An elevation of privilege vulnerability exists in the Broadcom Wi-Fi driver in Android. An attack...
CVE-2017-0740
A remote code execution vulnerability in the Broadcom networking driver. Product: Android. Versions: Android kernel. Android ID: A-37168488. References: B-RB116402...
Google Android Broadcom Wi-Fi Driver elevation of privilege vulnerability (CNVD-2017-04579)
Google Android is a mobile operating system based on the Linux open kernel.Broadcom Wi-Fi Driver is a Wi-Fi driver module developed by Broadcom that is used in it. The Google Android Broadcom Wi-Fi Driver elevation of privilege vulnerability is an elevation of privilege vulnerability. An attacker...
CVE-2017-0585
An information disclosure vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Broadcom’s Android Wi-Fi driver is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
kernel: b43: format string leaking into error msgs
Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe...
CVE-2013-1929
Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...
DEBIAN-CVE-2013-1929
Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...
Kernel: tg3: buffer overflow in VPD firmware parsing
Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...
Fedora Core 1 : kernel-2.4.22-1.2197.nptl (2004-206)
During an audit of the Linux kernel, SUSE discovered a flaw that allowed a user to make unauthorized changes to the group ID of files in certain circumstances. In the 2.4 kernel, as shipped with Fedora Core 1, the only way this could happen is through the kernel nfs server. A user on a system tha...
Linux Broadcom 5820 Cryptonet driver integer overflow
ubsecioctl function integer overflow...