EUVD-2018-17666

Malware in sbrugna...

CVE-2018-5899

CVE-2018-5899 affects Android CAF builds (Android for MSM, Firefox OS for MSM, QRD Android) with the Linux kernel used in these releases. A use-after-free occurs in the TDLS path: netbuf is freed in ol_tx_completion_handler and subsequently accessed by NBUF_UPDATE_TX_PKT_COUNT. This use-after-fre...

CVE-2018-5899

In Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, whenever TDLS connection is setup, we are freeing the netbuf in oltxcompletionhandler and after that, we are accessing it in NBUFUPDATETXPKTCOUNT causing a...

Broadcom Wi-Fi SoC - Heap Overflow wlc_tdls_cal_mic_chk Due to Large RSN IE in TDLS Setup Confirm Frame

Broadcom Wi-Fi SoC - Heap Overflow wlctdlscalmicchk Due to Large RSN IE in TDLS Setup Confirm Frame Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1047 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in bot...

Broadcom Wi-Fi SoC - Heap Overflow 'wlc_tdls_cal_mic_chk' Due to Large RSN IE in TDLS Setup Confirm Frame

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1047 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capable of handling many Wi-Fi related events without...