Lack of data validation In firmware-nonfree
Description
The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control message packets, aka internal bug 25662029.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 debian 11 | =0.1 || =0.10 || =0.11 || =0.12 || =0.13 || =0.13~bpo40+1 || =0.14 || =0.14+lenny1 || =0.14+lenny2 || =0.15 || =0.16 || =0.16~bpo50+1 || =0.17 || =0.17~bpo50+1 || =0.18 || =0.19 || =0.2 || =0.20 || =0.21 || =0.22 || =0.23 || =0.23~bpo50+1 || =0.24 || =0.24~bpo50+1 || =0.25 || =0.26 || =0.27 || =0.27~bpo50+1 || =0.28 || =0.28+squeeze1 || =0.29 || =0.3 || =0.30 || =0.31 || =0.32 || =0.32~bpo60+1 || =0.33 || =0.34 || =0.35 || =0.35~bpo60+1 || =0.36 || =0.36+wheezy.1 || =0.36+wheezy.1~bpo60+1 || =0.37 || =0.38 || =0.38~bpo70+1 || =0.39 || =0.39~bpo70+1 || =0.4 || =0.4+etchnhalf.1 || =0.40 || =0.40~bpo70+1 || =0.41 || =0.41~bpo70+1 || =0.42 || =0.43 || =0.43~bpo70+1 || =0.44 || =0.44~bpo8+1 || =0.4etch1 || =0.5 || =0.6 || =0.7 || =0.8 || =0.9 || =20151018-1 || =20151018-2 || =20151018-2~bpo8+1 || =20151207-1 || =20151207-1~bpo8+1 || =20160110-1 || =20160110-1~bpo8+1 || =20160824-1 || =20160824-1~bpo8+1 || =20161130-1 || =20161130-2 || =20161130-2~bpo8+1 || =20161130-3 || =20161130-3~bpo8+1 || =20161130-4 || =20161130-4~deb8u1 || =20161130-5 || =20161130-5~deb8u1 || =20170823-1 || =20170823-1~bpo9+1 || =20180518-1~bpo9+1 || >=0 <20180518-1 | 20180518-1 | |
debian 13 | =0.1 || =0.10 || =0.11 || =0.12 || =0.13 || =0.13~bpo40+1 || =0.14 || =0.14+lenny1 || =0.14+lenny2 || =0.15 || =0.16 || =0.16~bpo50+1 || =0.17 || =0.17~bpo50+1 || =0.18 || =0.19 || =0.2 || =0.20 || =0.21 || =0.22 || =0.23 || =0.23~bpo50+1 || =0.24 || =0.24~bpo50+1 || =0.25 || =0.26 || =0.27 || =0.27~bpo50+1 || =0.28 || =0.28+squeeze1 || =0.29 || =0.3 || =0.30 || =0.31 || =0.32 || =0.32~bpo60+1 || =0.33 || =0.34 || =0.35 || =0.35~bpo60+1 || =0.36 || =0.36+wheezy.1 || =0.36+wheezy.1~bpo60+1 || =0.37 || =0.38 || =0.38~bpo70+1 || =0.39 || =0.39~bpo70+1 || =0.4 || =0.4+etchnhalf.1 || =0.40 || =0.40~bpo70+1 || =0.41 || =0.41~bpo70+1 || =0.42 || =0.43 || =0.43~bpo70+1 || =0.44 || =0.44~bpo8+1 || =0.4etch1 || =0.5 || =0.6 || =0.7 || =0.8 || =0.9 || =20151018-1 || =20151018-2 || =20151018-2~bpo8+1 || =20151207-1 || =20151207-1~bpo8+1 || =20160110-1 || =20160110-1~bpo8+1 || =20160824-1 || =20160824-1~bpo8+1 || =20161130-1 || =20161130-2 || =20161130-2~bpo8+1 || =20161130-3 || =20161130-3~bpo8+1 || =20161130-4 || =20161130-4~deb8u1 || =20161130-5 || =20161130-5~deb8u1 || =20170823-1 || =20170823-1~bpo9+1 || =20180518-1~bpo9+1 || >=0 <20180518-1 | 20180518-1 | |
debian 14 | =0.1 || =0.10 || =0.11 || =0.12 || =0.13 || =0.13~bpo40+1 || =0.14 || =0.14+lenny1 || =0.14+lenny2 || =0.15 || =0.16 || =0.16~bpo50+1 || =0.17 || =0.17~bpo50+1 || =0.18 || =0.19 || =0.2 || =0.20 || =0.21 || =0.22 || =0.23 || =0.23~bpo50+1 || =0.24 || =0.24~bpo50+1 || =0.25 || =0.26 || =0.27 || =0.27~bpo50+1 || =0.28 || =0.28+squeeze1 || =0.29 || =0.3 || =0.30 || =0.31 || =0.32 || =0.32~bpo60+1 || =0.33 || =0.34 || =0.35 || =0.35~bpo60+1 || =0.36 || =0.36+wheezy.1 || =0.36+wheezy.1~bpo60+1 || =0.37 || =0.38 || =0.38~bpo70+1 || =0.39 || =0.39~bpo70+1 || =0.4 || =0.4+etchnhalf.1 || =0.40 || =0.40~bpo70+1 || =0.41 || =0.41~bpo70+1 || =0.42 || =0.43 || =0.43~bpo70+1 || =0.44 || =0.44~bpo8+1 || =0.4etch1 || =0.5 || =0.6 || =0.7 || =0.8 || =0.9 || =20151018-1 || =20151018-2 || =20151018-2~bpo8+1 || =20151207-1 || =20151207-1~bpo8+1 || =20160110-1 || =20160110-1~bpo8+1 || =20160824-1 || =20160824-1~bpo8+1 || =20161130-1 || =20161130-2 || =20161130-2~bpo8+1 || =20161130-3 || =20161130-3~bpo8+1 || =20161130-4 || =20161130-4~deb8u1 || =20161130-5 || =20161130-5~deb8u1 || =20170823-1 || =20170823-1~bpo9+1 || =20180518-1~bpo9+1 || >=0 <20180518-1 | 20180518-1 | |
debian 12 | =0.1 || =0.10 || =0.11 || =0.12 || =0.13 || =0.13~bpo40+1 || =0.14 || =0.14+lenny1 || =0.14+lenny2 || =0.15 || =0.16 || =0.16~bpo50+1 || =0.17 || =0.17~bpo50+1 || =0.18 || =0.19 || =0.2 || =0.20 || =0.21 || =0.22 || =0.23 || =0.23~bpo50+1 || =0.24 || =0.24~bpo50+1 || =0.25 || =0.26 || =0.27 || =0.27~bpo50+1 || =0.28 || =0.28+squeeze1 || =0.29 || =0.3 || =0.30 || =0.31 || =0.32 || =0.32~bpo60+1 || =0.33 || =0.34 || =0.35 || =0.35~bpo60+1 || =0.36 || =0.36+wheezy.1 || =0.36+wheezy.1~bpo60+1 || =0.37 || =0.38 || =0.38~bpo70+1 || =0.39 || =0.39~bpo70+1 || =0.4 || =0.4+etchnhalf.1 || =0.40 || =0.40~bpo70+1 || =0.41 || =0.41~bpo70+1 || =0.42 || =0.43 || =0.43~bpo70+1 || =0.44 || =0.44~bpo8+1 || =0.4etch1 || =0.5 || =0.6 || =0.7 || =0.8 || =0.9 || =20151018-1 || =20151018-2 || =20151018-2~bpo8+1 || =20151207-1 || =20151207-1~bpo8+1 || =20160110-1 || =20160110-1~bpo8+1 || =20160824-1 || =20160824-1~bpo8+1 || =20161130-1 || =20161130-2 || =20161130-2~bpo8+1 || =20161130-3 || =20161130-3~bpo8+1 || =20161130-4 || =20161130-4~deb8u1 || =20161130-5 || =20161130-5~deb8u1 || =20170823-1 || =20170823-1~bpo9+1 || =20180518-1~bpo9+1 || >=0 <20180518-1 | 20180518-1 |
Aliases
References
Does your application use this vulnerable software?
During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.