The brcm80211 component in the Linux kernel through 6.5...
Moderate severity
Unreviewed
Published
Nov 3, 2023
to the GitHub Advisory Database
•
Updated Jun 27, 2024
Description
Published by the National Vulnerability Database
Nov 3, 2023
Published to the GitHub Advisory Database
Nov 3, 2023
Last updated
Jun 27, 2024
The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this "could be exploited in a real world scenario." This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.
References