Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26889)

Bluetooth: hcicore: Fix possible buffer overflow. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503514; scriptversion"1.2";...

Linux Distros Unpatched Vulnerability : CVE-2022-49754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmtmeshadd Smatch Warning: net/bluetooth/mgmtutil.c:375...

CVE-2022-49754 Bluetooth: Fix a buffer overflow in mgmt_mesh_add()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmtmeshadd Smatch Warning: net/bluetooth/mgmtutil.c:375 mgmtmeshadd error: memcpy 'meshtx-param' too small 48 vs 50 Analysis: 'meshtx-param' is array of size 48. This is the destination. u8...

CVE-2022-49754

CVE-2022-49754: Linux kernel Bluetooth mgmt_mesh_add() contains a buffer overflow risk in mgmt_util.c. Smatch indicates mesh_tx->param is 48 bytes while the destination can reach 50 bytes; caller rejects only when len > 50, creating a potential overflow window. Multiple connected sources co...

CVE-2023-26110

All versions of the package node-bluetooth are vulnerable to Buffer Overflow via the findSerialPortChannel method due to improper user input length validation...

Important: Red Hat Security Advisory: linux-firmware security update

An update for linux-firmware is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support, Red Hat Enterprise Linux 7.7 Telco Extended Update Support, and Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a securi...

Google Android 缓冲区错误漏洞

MediaTek Inc. is the world's fourth largest fab-based semiconductor company and a leader in the markets of mobile terminals, smart home applications, wireless connectivity and Internet of Things IoT products, with approximately 1.5 billion units of end products with built-in MediaTek chips hittin...

CVE-2021-22492

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Broadcom Bluetooth chipsets software. The Bluetooth UART driver has a buffer overflow. The Samsung ID is SVE-2020-18731 January 2021...

Important: Red Hat Security Advisory: linux-firmware security and bug fix update

An update for linux-firmware is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2020-9113

HUAWEI Mate 20 versions earlier than 10.0.0.188C00E74R3P8 have a buffer overflow vulnerability in the Bluetooth module. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth messages after successful paring, causing buffer overflow. Successful exploit may cause cod...

Google Android System Buffer Overflow Vulnerability (CNVD-2019-39716)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A buffer overflow vulnerability exists in the Bluetooth stack in Android version 10. An attacker can exploit the vulnerability to elevate privileges...

Unbreakable Enterprise kernel security update

2.6.39-400.312.1 - Bluetooth: hidp: fix buffer overflow Young Xiao Orabug: 29786788 CVE-2011-1079 CVE-2019-11884 - x86/speculation/mds: Fix verw usage to use memory operand Patrick Colp Orabug: 29791037 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 - x86/speculation/mds: Make...

Huawei LON-AL00B Bluetooth Module Buffer Overflow Vulnerability

The Huawei LON-AL00B is a cell phone from the Chinese company Huawei Huawei. The Huawei LON-AL00B Bluetooth module suffers from a buffer overflow vulnerability due to the program failing to adequately validate input. An attacker could forge or tamper with Bluetooth AVDTP/AVCTP messages after...

USN-3422-2: Linux kernel (Trusty HWE) vulnerabilities

USN-3422-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux...

USN-3422-1 linux vulnerabilities

It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux kernel when handling L2CAP configuration responses. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2017-1000251 It was discovered that the asynchronous I/O aio...