Lucene search
+L

52 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: net: nfc: Fixed a use-after-free in localcleanup. A use-after-free occurs in kfreeskb called from localcleanup. This can occur when killing the nfc daemon e.g., neard after detaching an nfc device. When detaching an nfc device,...

7.8CVSS6.2AI score0.0018EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: L2CAP: Fix for u8 overflow By continuously sending L2CAPCONFREQ packets, chan-numconfrsp increases multiple times, eventually exceeding the maximum number i.e., 255. This patch prevents this issue by adding a bounda...

5.5CVSS6.3AI score0.00246EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/06 11:27 a.m.7 views

CVE-2026-43134

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size check for L2CAPLECONNREQ This adds a check for encryption key size upon receiving L2CAPLECONNREQ which is required by L2CAP/LE/CFC/BV-15-C which expects L2CAPCRLEBADKEYSIZE...

5.8AI score0.00177EPSS
Exploits0References9Affected Software1
osv
osv
added 2026/05/06 11:27 a.m.2 views

CVE-2026-43134 Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size check for L2CAPLECONNREQ This adds a check for encryption key size upon receiving L2CAPLECONNREQ which is required by L2CAP/LE/CFC/BV-15-C which expects L2CAPCRLEBADKEYSIZE...

8.1CVSS6.6AI score0.00177EPSS
Exploits0References11
mscve
mscve
added 2026/04/26 8:7 a.m.8 views

nfc: llcp: add missing return after LLCP_CLOSED checks

...

8.8CVSS5.8AI score0.00224EPSS
Exploits0
osv
osv
added 2026/04/24 2:42 p.m.3 views

CVE-2026-31629 nfc: llcp: add missing return after LLCP_CLOSED checks

In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCPCLOSED checks In nfcllcprecvhdlc and nfcllcprecvdisc, when the socket state is LLCPCLOSED, the code correctly calls releasesock and nfcllcpsockput but fails to return. Execution falls throu...

8.8CVSS6.3AI score0.00224EPSS
Exploits0References12
mscve
mscve
added 2026/04/23 8:9 a.m.9 views

Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/04/22 12:0 a.m.8 views

PT-2026-34417

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Bluetooth L2CAP component where the l2cap ecred data rcv function reads the SDU length field from skb-data using get unaligned le16 without verifying that the sock...

5.5CVSS5.5AI score0.00123EPSS
Exploits0
redhatcve
redhatcve
added 2026/04/03 7:26 p.m.7 views

CVE-2026-23462

A flaw was found in the Linux kernel's Bluetooth subsystem HIDP. A local attacker can exploit a use-after-free vulnerability by failing to properly drop a reference to an L2CAP Logical Link Control and Adaptation Protocol connection during a user removal callback. This memory corruption flaw may...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References4
susecve
susecve
added 2026/03/25 4:54 p.m.6 views

SUSE CVE-2026-23395

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

6.5CVSS5.7AI score0.00249EPSS
Exploits0References15
nvd
nvd
added 2026/02/14 4:15 p.m.6 views

CVE-2026-23150

In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfcllcpsenduiframe. syzbot reported various memory leaks related to NFC, struct nfcllcpsock, skbuff, nfcdev, etc. 0 The leading log hinted that nfcllcpsenduiframe failed to allocate skb due to sockerrors...

5.5CVSS0.00115EPSS
Exploits0References7
nessus
nessus
added 2026/01/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000483)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000483 advisory. A heap data infoleak in multiple locations including L2CAPPARSECONFRSP was found in the Linux kernel before 5.1-rc1. Tenable has extracted the preceding description...

6.5CVSS6.3AI score0.01827EPSS
Exploits1References3
redhat
redhat
added 2025/10/29 12:46 a.m.10 views

kernel: Bluetooth: L2CAP: Fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free Fix potential use-after-free in l2caplecommandrej...

7.8CVSS6.8AI score0.0015EPSS
Exploits0References5
mscve
mscve
added 2025/09/27 1:2 a.m.15 views

Bluetooth: L2CAP: Fix not validating setsockopt user input

...

7.1CVSS7AI score0.00239EPSS
Exploits0
nessus
nessus
added 2025/08/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-21925

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llc: do not use skbget before devqueuexmit syzbot is able to crash hosts 1, using llc and devices not supporting IFFTXSKBSHARING. In this case, e1000 driver cal...

5.5CVSS6.8AI score0.002EPSS
Exploits0References2
nessus
nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-52843

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llc: verify mac len before reading mac header LLC reads the mac header with ethhdr without verifying that the skb has an Ethernet header. Syzbot was able to ent...

5.5CVSS6.4AI score0.00245EPSS
Exploits0References2
redhat
redhat
added 2025/05/13 8:28 a.m.6 views

kernel: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()

in linux kernel bluetooth L2CAP, l2capleflowctlinit can cause both div-by-zero and an integer overflow since hdev-lemtu may not fall in the valid range...

6.5CVSS6.8AI score0.00215EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2024/11/26 12:0 a.m.5 views

The vulnerability of the llc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the llc component in the Linux operating system’s kernel is related to the use of an uninitialized resource. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References24Affected Software2
mscve
mscve
added 2024/09/11 7:0 a.m.10 views

Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()

...

6.5CVSS7.3AI score0.00215EPSS
Exploits0
cnnvd
cnnvd
added 2024/05/21 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a vulnerability in the llc module...

5.5CVSS6.4AI score0.00245EPSS
Exploits0References10
Rows per page
Query Builder