Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -7 articles for you...
203
security advisorymoderateinformation disclosureMageia 8 MGASA-2021-0104 Moderate Threat: Broadcom Info Leak
Updated nonfree firmwares fixees various issues, adds new / improved hardware support and fixes atleast the following security issue: An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to . MGASA-2021-0104 - Updated nonfree firmware packages fix security vulnerability Publication date: 04 Mar 2021 URL: https://advisories.mageia.org/MGASA-2021-0104.html Type: security Affected Mageia releases: 8 CVE: CVE-2019-15126 Updated nonfree firmwares fixees various issues, adds new / improved hardware support and fixes atleast the following security issue: An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (CVE-2019-15126). Full list of updates: * kernel-firmware-nonfree: - add firmware for Lontium LT9611UXC DSI to HDMI bridge - brcm: Add NVRAM for Vamrs 96boards Rock960 - brcm: make AP6212 in bananpi m2 plus/zero work - brcm: Link RPi4's WiFi firmware with DMI machine name - brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes - brcm: remove old brcm firmwares that have newer cypress variants (CVE-2019-15126) - cypress: Link the new cypress firmware to the old brcm files (CVE-2019-15126) - i915: Add GuC firmware v49.0.1 for all platforms - i915: Add GuC v49.0.1 for DG1 - i915: Add HuC v7.7.1 for DG1 - i915: Add DMC v2.01 for ADL-S - mediatek: update MT8173 VPU firmware to v1.1.6 - mediatek: add firmware for MT7921 - Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 - qcom: add firmware files for Adreno a650 - qcom: Add SM8250 Audio DSP firmware - qcom: Add SM8250 Compute DSP firmware - qcom: Add venus firmware files for VPU-1.0 * iwlwifi-firmware: - Update firmware for Intel Bluetooth AX200, AX201, AX210 to22.30.0.4 * rtlwifi-firmware: - rtw89: 8852a: add firmware v0.9.12.2 References: - https://bugs.mageia.org/show_bug.cgi?id=28500 - https://www.cve.org/CVERecord?id=CVE-2019-15126 SRPMS: - 8/nonfree/kernel-firmware-nonfree-20210223-1.mga8.nonfree . Recent modifications to nonfree firmware packages address security vulnerabilities on Broadcom devices, improving hardware compatibility and safeguarding functionalities.. Mageia Firmware Update, Nonfree Security, Broadcom Wi-Fi Issue. . LinuxSecurity.com Team
Mar 04, 2021
Mageia
172
security advisoryformat stringubuntuUbuntu 12.04 LTS USN-1915-1 Critical: Broadcom B43 Driver Exploit
The system could be made to crash or run programs as an administrator.. =========================================================================Ubuntu Security Notice USN-1915-1 July 29, 2013 linux-lts-quantal vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: The system could be made to crash or run programs as an administrator. Software Description: - linux-lts-quantal: Linux hardware enablement kernel from Quantal Details: Kees Cook discovered a format string vulnerability in the Broadcom B43 wireless driver for the Linux kernel. A local user could exploit this flaw to gain administrative privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: linux-image-3.5.0-37-generic 3.5.0-37.58~precise1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-1915-1 CVE-2013-2852 Package Information: https://launchpad.net/ubuntu/+source/linux-lts-quantal/3.5.0-37.58~precise1 . A critical format string flaw in the Broadcom B43 driver could allow local users to gain elevated privileges on Ubuntu systems.. Broadcom B43 Driver Exploit, Ubuntu Kernel Flaw, Linux Security Advisory. . Severity: Critical. LinuxSecurity.com Team
Jul 29, 2013
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!