I just read about
CVE-2019-9503, CVE-2019-9500 brcmfmac frame validation bypass
So far I understand that Client devices are affected that use USB wifi adapters with Broadcom drivers. Also brcmfmac.
latest brcmfmac and the linux kernel are already patched - what I don't understand: Is this also used for openwrt? If yes, is this vulnerability also relevant for openwrt (like in package kmod-brcmfmac)?