Broadcom WiFi Buffer Overflow Vulnerability

Broadcom WiFi Buffer Overflow Vulnerability

Broadcom WiFi Buffer Overflow Vulnerability

Lenovo Security Advisory: LEN-17237

Potential Impact:  Arbitrary code execution

Severity: Critical

Scope of Impact: Industry-wide

CVE Identifier: CVE-2017-11120, CVE-2017-11121

Summary Description:

Broadcom has issued an advisory for certain Broadcom WiFi controllers used by many computer and device makers, which contain buffer overflow vulnerabilities on the adapter (not the system CPU). Broadcom initially did not plan to remediate these issues, but when the WPA2 KRACK issue also emerged, Broadcom combined both fixes in to a single set of driver updates. Lenovo received the first of these near the end of 2017, and continues releasing fixes as integration and testing is completed.

 

Mitigation Strategy for Customers (what you should do to protect yourself):

Broadcom recommends updating to the WiFi driver version (or newer) indicated for your model in the Product Impact section below. 

 

Product Impact:

Only ThinkPad products use the affected Broadcom WiFi controllers.  Other product lines are not affected.

ThinkPad

 

Other information and references:

 

For a complete list of all Lenovo Product Security Advisories, click here.

Revision History:

Revision

Date

Description

2 2018-06-26 Updated ThinkPad.

1

2018-02-08

Initial release

For the most up to date information, please remain current with updates and advisories from Lenovo regarding your equipment and software. The information provided in this advisory is provided on as “as is” basis without any warranty or guarantee of any kind. Lenovo reserves the right to change or update this advisory at any time.

Product Impact:

ThinkPad

Product  Model Windows 10 Windows 8.1 Windows 7 Last Updated
ThinkPad 8 (32-bit) 20BN, 20BQ Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 8 (64-bit) 20BN, 20BQ Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 10  20E3, 20E4 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad 10 (32-bit) 20C1, 20C3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 10 (64-bit) 20C1, 20C3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 11e/Yoga 11e - 3rd Gen 20G9, 20GB, 20G8 20GA Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 11e/Yoga 11e - 4th Gen 20HT, 20HV, 20HS, 20HU Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 13 / ThinkPad S2 20GJ, 20GK, 20GU Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 13 -2nd Gen /ThinkPad S2-2nd Gen  20J1, 20J2, 20J3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad 131e 3367, 3368, 3369 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad A275  20KD, 20KC Not Affected Not Affected Not Affected 2/8/2018
ThinkPad E450 / E450c/E550/E550c 20DC, 20DD, 20DF, 20DG, 20E0 No supplier support No supplier support No supplier support 2/8/2018
ThinkPad E455/E555 20DE, 20Dh No supplier support No supplier support No supplier support 2/8/2018
ThinkPad E460/E560  20ET, 20EU, 20EV, 20EW No supplier support No supplier support No supplier support 2/8/2018
ThinkPad E465/E565 20EX, 20EY No supplier support No supplier support No supplier support 2/8/2018
ThinkPad E470/E470c/E570/E570c 20H1, 20H2, 20H3, 20H5, 20H6, 20H7 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad E475/E575 20H4, 20H8 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad E560p / ThinkPad S5  20G5, 20G4 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad E570/E570c/ThinkPad S5 2nd Gen 20H5, 20H6, 20H7, 20JA Not Affected Not Affected Not Affected 2/8/2018
ThinkPad Helix  20CG, 20CH Not Affected Not Affected Not Affected 2/8/2018
ThinkPad Helix  3697, 3698, 3700, 3701, 3702 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad L450 20DS, 20DT Not Affected Not Affected Not Affected 2/8/2018
ThinkPad L460 20FU, 20FV 1.558.53.1 No supplier support No supplier support 6/27/2018
ThinkPad L470 20J4, 20J5 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad L470 20JU, 20JV Not Affected Not Affected Not Affected 2/8/2018
ThinkPad L560 20F1, 20F2 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad L570 KBL  20J8 (Tx), 20J9 (Rx) Not Affected Not Affected Not Affected 2/8/2018
ThinkPad L570 SKL 20JQ (Tx), 20JR (Rx) Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P40 Yoga  20GR, 20GQ Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P50 20EN, 20EQ Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P50s 20FK, 20FL 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad P51 20HH, 20HJ Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P51s KBL  20HB, 20HC Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P51s SKL  20JY, 20K0 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P70 20ER, 20ES Not Affected Not Affected Not Affected 2/8/2018
ThinkPad P71 20HK, 20HL Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S1 3rd 20JK, 20JL Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S1 Yoga 20C0, 20CD Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S1 Yoga 12 20DL, 20DK Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S3 Yoga 14 20DM, 20DN Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S3-S440 20AY, 20BB Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S430 3364 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S5 - S531 20B0 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S5 - S540 20B3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad S5 Yoga 15 20DQ, 20DR Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T430 2342, 2344, 2345, 2347, 2349, 2350, 2351 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T430s 2352, 2353, 2354, 2355, 2356, 2357, 2358 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T431s 20AA, 20AC Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T440 20B6, 20B7 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T440p 20AN, 20AW Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T440s 20AQ, 20AR Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T450/T450s  20BU, 20BV, 20DJ, 20BW, 20BX Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T460 20FM, 20FN 1.558.53.1 No supplier support No supplier support 6/27/2018
ThinkPad T460p 20FW, 20FX 1.558.53.1 No supplier support No supplier support 6/27/2018
ThinkPad T460s 20F9, 20FA 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad T470 KBL  20HD, 20HE Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T470 SKL  20JM, 20JN Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T470p 20J6, 20J7 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T470s KBL 20HF, 20HG Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T470s SKL 20JS, 20JT Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T530 2359, 2392, 2393, 2394, 2429, 2430, 2434 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T540p 20BE, 20BF Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T550 20CJ, 20DK Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T560 20FH, 20FJ 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad T570 KBL  20H9, 20HA Not Affected Not Affected Not Affected 2/8/2018
ThinkPad T570 SKL  20JW, 20HJX Not Affected Not Affected Not Affected 2/8/2018
ThinkPad Twist/S230u 3347, 20C4 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad W530 2436, 2438, 2439, 2441, 2447, 2449, 2463 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad W540 20GB, 20BH Not Affected Not Affected Not Affected 2/8/2018
ThinkPad W541 20EF, 20EG Not Affected Not Affected Not Affected 2/8/2018
ThinkPad W550s 20E1, 20E2 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 / X1 Hybrid 1286, 1291, 1292, 1293, 1294, 1295, 1296 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon (34xx) 3443, 3444, 3446, 3448, 3460, 3462, 3463 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon 2nd Gen 20A7, 20A8 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon 3rd Gen 20BS 20BT Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon 4th Gen  20FB, 20FC Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon 5th Gen  / X1C 5th  20HQ, 20HR Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Carbon 5th Gen  / X1C 5th  SKL 20K4, 20K3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Tablet  20GG, 20GH Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Tablet Gen 2 20JB, 20JC Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Yoga 20FQ, 20FR Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X1 Yoga 2nd Gen 20JD, 20JE, 20JF, 20JG Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X140e (AMD) 20BL, 20BM Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X230 Tablet; X230i Tablet 3434, 3435, 3436, 3437, 3438, 3441, 3442 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X230, X230i 2306, 2320, 2322, 2324, 2325, 2330, 2333 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X230s/X231s 20AH, 20A3 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X240 20AL, 20AM Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X240s 20AJ, 20AK Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X250 (Broadwell) 20CM, 20CL Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X250 (Sharkbay) 20CM, 20CL Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X260   20F5, 20F6 1.558.53.1 No supplier support No supplier support 6/27/2018
ThinkPad X270  20HM, 20HN Not Affected Not Affected Not Affected 2/8/2018
ThinkPad X270  20K5, 20K6 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad Yoga 14, Yoga 460, S3  20FY, 20EL,20EM, 20G0, 20G1 Not Affected Not Affected Not Affected 2/8/2018
ThinkPad Yoga 260 / ThinkPad S1 - 2nd Gen  20FD, 20FE, 20GS, 20GT, 20FS, 20FT 1.558.53.1 Not Affected Not Affected 2/8/2018
ThinkPad Yoga 370 20JH, 20JJ Not Affected Not Affected Not Affected 2/8/2018

 

<Back to Top>

 


Alias Id:LEN-17237
Document ID:PS500155
Original Publish Date:02/09/2018
Last Modified Date:06/27/2018