Lenovo releases patches for two critical vulnerabilities in Broadcom chipsets impacting at least 24 models of Lenovo ThinkPad laptops.
The flaws were discovered by Google’s Project Zero and initially reported to be only affecting specific Broadcom chipsets used in Apple iPhones, Apple TV, and Android devices.
Now Lenovo has released a security advisory warning that dozens of Lenovo ThinkPad model which use BCM4356 Wireless LAN Driver for Windows 10 are affected by same vulnerabilities CVE-2017-11120 and CVE-2017-11121 which were patched by Google and Apple in September.
Both the (CVE-2017-11120) and (CVE-2017-11121) vulnerabilities were rated as critical and received a 10 score in CVSS scale. The flaws can be exploited by attackers to gain arbitrary code execution on the adapter (not on the system’s CPU) of the target system.
“Broadcom has issued an advisory for certain Broadcom WiFi controllers used by many computer and device makers, which contain buffer overflow vulnerabilities on the adapter (not the system CPU). Broadcom initially did not plan to remediate these issues, but when the WPA2 KRACK issue also emerged, Broadcom combined both fixes into a single set of driver updates. Lenovo received the first of these near the end of 2017, and continues releasing fixes as integration and testing is completed.” said in the security advisory published by Lenovo.
The first flaw (CVE-2017-11120) is a memory corruption vulnerability, discovered by Google Project Zero researcher Gal Beniamini in June and publicly disclosed it in September.
The vulnerability could be exploited by attackers to insert a backdoor on the targeted device and execute code.
The second one (CVE-2017-11121) was also discovered by Gal Beniamini which is a buffer overflow vulnerability caused by improper validation of Wi-Fi signals.
The models affected by the flaws are ThinkPad 10, ThinkPad L460, ThinkPad P50s, ThinkPad T460, ThinkPad T460p, ThinkPad T460s, ThinkPad T560, ThinkPad X260 and ThinkPad Yoga 260.
All Lenovo ThinkPad users are advised to urgently update their WiFi drivers.