CVE-2013-2852

Source
https://nvd.nist.gov/vuln/detail/CVE-2013-2852
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-2852.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2013-2852
Related
Published
2013-06-07T14:03:20Z
Modified
2024-06-30T12:01:22Z
Summary
[none]
Details

Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe parameter, leading to improper construction of an error message.

References

Affected packages

Debian:11 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.9.8-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.9.8-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.9.8-1

Ecosystem specific

{
    "urgency": "low"
}