2 matches found
CVE-2017-0570
CVE-2017-0570 concerns a local elevation-of-privilege flaw in the Broadcom Wi‑Fi driver used by Android. The connected Seebug entry details a heap overflow in the wl_iw_get_essid ioctl path (SIOCGIWESSID): the driver allocates a 33-byte extras buffer and copies ssid.SSID_len bytes from the dongle...
Broadcom: Heap overflow in "wl_iw_get_essid" when handling WLC_GET_SSID ioctl results(CVE-2017-0570)
Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capable of handling many Wi-Fi related events without delegating to the host OS. On Android devices, the "bcmdhd" driver is use...