Vulnerability in Broadcom WiFi chip fixes urgently on Android and iOS

Vulnerability in Broadcom WiFi chip fixes urgently on Android and iOS

Just one week after making iOS 10.3 available, Apple offered an additional update iOS 10.3.1 bringing bug fixes but also blocking a flaw affecting the WiFi module of iOS mobile devices.

Broadcom logoNew details indicate that the WiFi module provided by Broadcom could let an attacker run code secretly on a mobile device if they had access to the same WiFi network as their victim.

This flaw was also valid on Android and was detailed in the context of the Project Zero, impacting several smartphones including the Nexus 5, 6, 6P, various Samsung smartphones and probably other devices equipped with the same WiFi chip.

The fix for Android will be brought in the monthly security patch of April but the problem could persist for some time on this platform insofar as the patches can take time to diffuse on the smartphones concerned … or not be offered at all, according to the policy of smartphone manufacturer for tracking updates and security fixes.