Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

A problem with out-of-bound reading was detected in brcmfmac/cfg80211.c within the drivers/net/wireless/broadcom/brcm80211 directory of the Linux kernel. This issue can occur when the associnfo-reqlen data is larger than the size of the buffer, which is defined as WLEXTRABUFMAX, resulting in a...

kernel: wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: slab-out-of-bounds read in brcmfgetassocies Fix a slab-out-of-bounds read that occurs in kmemdup called from brcmfgetassocies. The bug could occur when associnfo-reqlen, data from a URB provided by a USB device, i...

CVE-2023-53213

The CVE-2023-53213 issue affects the Linux kernel brcmfmac driver, causing a slab-out-of-bounds read in kmemdup called from brcmf_get_assoc_ies when assoc_info->req_len (from a USB URB) exceeds WL_EXTRA_BUF_MAX. The advisory states this was fixed by adding a size check for req_len/resp_len in ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to check the reqlen size of associnfo in the brcmfgetassocies function, which could result in an...

kernel: wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: slab-out-of-bounds read in brcmfgetassocies Fix a slab-out-of-bounds read that occurs in kmemdup called from brcmfgetassocies. The bug could occur when associnfo-reqlen, data from a URB provided by a USB device, i...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux Kernel that stems from a denial of service when the associnfo-reqlen data is larger than the buffer size defined as WLEXTRABUFMAX...

The vulnerability of the brcmf_get_assoc_ies() function in the driver drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the Linux kernel allows a attacker to access protected information or cause a service failure.

The vulnerability of the brcmfgetassocies function in the driver drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the Linux kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to access protected...