VIR Vulnerability Intelligence Relay

CVE-2022-3628

high
Published 2023-05-09 Β· Modified 2023-05-16
πŸ’¬ Discuss on Community ✚ Propose mitigation
CVSS v3
β€”
CVSS v4 NEW
β€”
not yet in upstream
VIR risk
8.0

Description

A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.

Predictions

Exploit likelihood
20%
Patch ETA
β€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Red Hat Errata β€” Red Hat Inc. Β· View original β†— Β· Open-Errata-API

Description kernel: USB-accessible buffer overflow in brcmfmac Red Hat statement To mitigate this issue, prevent the brcmfmac module from being loaded. See https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically. CVSS v3: 6.8 (CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) Errata / fixed releases ProductPackageAdvisoryReleased Red Hat…

Description

kernel: USB-accessible buffer overflow in brcmfmac

Red Hat statement

To mitigate this issue, prevent the brcmfmac module from being loaded. See https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.

CVSS v3: 6.8 (CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Errata / fixed releases

ProductPackageAdvisoryReleased
Red Hat Enterprise Linux 8kernel-rt-0:4.18.0-477.10.1.rt7.274.el8_8RHSA-2023:27362023-05-16T00:00:00Z
Red Hat Enterprise Linux 8kernel-0:4.18.0-477.10.1.el8_8RHSA-2023:29512023-05-16T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Supportkernel-0:4.18.0-372.87.1.el8_6RHSA-2024:04122024-01-25T00:00:00Z
Red Hat Enterprise Linux 9kernel-0:5.14.0-284.11.1.el9_2RHSA-2023:24582023-05-09T00:00:00Z
Red Hat Enterprise Linux 9kernel-rt-0:5.14.0-284.11.1.rt14.296.el9_2RHSA-2023:21482023-05-09T00:00:00Z
Red Hat Enterprise Linux 9kernel-0:5.14.0-284.11.1.el9_2RHSA-2023:24582023-05-09T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8kernel-0:4.18.0-372.87.1.el8_6RHSA-2024:04122024-01-25T00:00:00Z

Package state

ProductPackageState
Red Hat Enterprise Linux 6kernelOut of support scope
Red Hat Enterprise Linux 7kernelOut of support scope
Red Hat Enterprise Linux 7kernel-rtOut of support scope

Apply commands

bash fix
Apply RHSA-2023:2736 for Red Hat Enterprise Linux 8
yum update -y kernel-rt
# or:
dnf upgrade -y kernel-rt

OS impact
suse SUSE Affected 1 release
VersionStatusFixed in
β€” Affected β€”
almalinux AlmaLinux Fixed 2 releases
VersionStatusFixed in
9 Fixed kernel-doc-5.14.0-284.11.1.el9_2.noarch.rpm
8 Fixed kernel-doc-4.18.0-477.10.1.el8_8.noarch.rpm
arch Arch Fixed 1 release
VersionStatusFixed in
β€” Fixed 6.2-1
debian Debian Fixed 5 releases
VersionStatusFixed in
trixie Fixed 6.0.8-1
sid Fixed 6.0.8-1
forky Fixed 6.0.8-1
bullseye Fixed 5.10.158-1
bookworm Fixed 6.0.8-1
redhat Red Hat Fixed 2 releases
VersionStatusFixed in
9 Fixed β€”
8 Fixed β€”

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.