发布时间: 2024年4月26日
修改时间: 2024年10月31日
The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this "could be exploited in a real world scenario." This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.
| NVD | openEuler | |
|---|---|---|
| Confidentiality | None | Low |
| Attack Vector | Physical | Physical |
| CVSS评分 | 4.3 | 6.3 |
| Attack Complexity | Low | Low |
| Privileges Required | Low | High |
| Scope | Unchanged | Changed |
| Integrity | None | Low |
| User Interaction | None | None |
| Availability | High | High |
| 公告名 | 概要 | 发布时间 |
|---|---|---|
| KylinSec-SA-2024-4774 | kernel security update | 2025年2月17日 |
| 产品 | 包 | 状态 |
|---|---|---|
| KY3.4-4A | kernel | Fixed |
| KY3.4-5 | kernel | Fixed |
