Linux Kernel Uninitialized Variable Vulnerability in brcm80211 FMAC Driver

Vulnerability

A vulnerability in the Linux kernel's brcm80211 FMAC driver for Wi-Fi has been addressed. The issue arose because the function brcmf_usb_dl_writeimage() called brcmf_usb_dl_cmd() without checking the return value. This oversight left the 'state.state' and 'state.bytes' variables uninitialized, creating a risk by using these variables in conditions. The vulnerability has been resolved by adding error handling for brcmf_usb_dl_cmd(), ensuring that if the command fails and the variables are uninitialized, the function jumps to an error handling path. Additionally, the error message has been improved to provide more detailed information.

Impact

The vulnerability could lead to the use of uninitialized variables, potentially causing undefined behavior in the driver.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Uninitialized Variable Vulnerability in brcm80211 FMAC Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating