67 matches found
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the b43rx function in the b43 driver. This function fails to perform forced boundary checks on th...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15
A problem with out-of-bound reading was detected in brcmfmac/cfg80211.c within the drivers/net/wireless/broadcom/brcm80211 directory of the Linux kernel. This issue can occur when the associnfo-reqlen data is larger than the size of the buffer, which is defined as WLEXTRABUFMAX, resulting in a...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007428)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007428 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix invalid address access when enabling SCAN log level The variable i is changed...
ROS-20260119-7347
A vulnerability in the brcmftxfinalize function of the drivers/net/wireless/broadcom/brcm80211/brcmfmac/core.c component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000910)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000910 advisory. A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References: B-V2017060101...
Unity Linux 20.1060a Security Update: kernel (UTSA-2026-004377)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004377 advisory. The brcm80211 component in the Linux kernel through 6.5.10 has a brcmfcfg80211detach use-after-free in the device unplugging disconnect the USB by hotplug code. For...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002938)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002938 advisory. A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References: B-V2017060101...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003330)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003330 advisory. Stack-based buffer overflow in the brcmfcfg80211startap function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.7.5 allo...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002476)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002476 advisory. Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002008)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002008 advisory. Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an invalid address access in brcmfmac, which could cause the kernel to crash...
CVE-2023-53715 wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex Apparently the hex passphrase mechanism does not work on newer chips/firmware e.g. BCM4387. It seems there was a simple way of passing it in binary all along, so use...
EUVD-2017-4678
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414387)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414387 advisory. A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow...
UBUNTU-CVE-2023-53582
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds Fix a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strreplace in...
UBUNTU-CVE-2025-21744
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix NULL pointer dereference in brcmftxfinalize On removal of the device or unloading of the kernel module a potential NULL pointer dereference occurs. The following sequence deletes the interface: brcmfdetach...
UBUNTU-CVE-2024-56593
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmfsdiodsglistrw This patch fixes a NULL pointer dereference bug in brcmfmac that occurs when a high 'sdsgentryalign' value applies e.g. 512 and a lot of queued SKBs a...
CVE-2020-10369
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow inferences about memory content via a "Spectra" attack...
CVE-2020-10370
Certain Cypress and Broadcom Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth outage via a "Spectra" attack...
CVE-2020-10367
CVE-2020-10367 affects certain Cypress (and Broadcom) Wireless Combo chips. When a January 2021 firmware update is not present, devices may allow memory access through a Spectra attack. The Red Hat, CIRCL, NVD and CVE listings corroborate the same description. The core issue is the lack of the 20...