37 matches found
SUSE CVE-2012-6544
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the 1 L2CAP or 2 HCI implementation...
The vulnerability of the JunOS operating system’s SRX series routers’ implementation of the Internet Content Adaptation Protocol (ICAP) allows attackers to enhance their privileges, execute arbitrary code, or cause service failures.
The vulnerability of the Internet Content Adaptation Protocol ICAP implementation in the JunOS operating system’s SRX series routers stems from the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to enhance their privileges,...
kernel: net: bluetooth: type confusion while processing AMP packets
A flaw was found in the way the Linux kernel’s Bluetooth implementation handled L2CAP Logical Link Control and Adaptation Protocol packets with A2MP Alternate MAC-PHY Manager Protocol CID Channel Identifier. This flaw allows a remote attacker in an adjacent range to crash the system, causing a...
kernel: net: bluetooth: type confusion while processing AMP packets
A flaw was found in the way the Linux kernel’s Bluetooth implementation handled L2CAP Logical Link Control and Adaptation Protocol packets with A2MP Alternate MAC-PHY Manager Protocol CID Channel Identifier. This flaw allows a remote attacker in an adjacent range to crash the system, causing a...
kernel: net: bluetooth: type confusion while processing AMP packets
A flaw was found in the way the Linux kernel’s Bluetooth implementation handled L2CAP Logical Link Control and Adaptation Protocol packets with A2MP Alternate MAC-PHY Manager Protocol CID Channel Identifier. This flaw allows a remote attacker in an adjacent range to crash the system, causing a...
kernel: Heap address information leak while using L2CAP_GET_CONF_OPT
A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol L2CAP, part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packe...
kernel: Heap address information leak while using L2CAP_GET_CONF_OPT
A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol L2CAP, part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packe...
Linux kernel information disclosure vulnerability (CNVD-2019-01672)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An information disclosure vulnerability exists in the Linux kernel's implementation of the Logical Link Control and Adaptation Protocol, which can be exploited to...
Linux kernel information disclosure vulnerability (CNVD-2019-38529)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel's implementation of the Logical Link Control and Adaptation Protocol. The vulnerability can be exploited by an...
UBUNTU-CVE-2017-1000251
The native Bluetooth stack in the Linux Kernel BlueZ, starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space...
Kernel: Bluetooth: HCI & L2CAP information leaks
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the 1 L2CAP or 2 HCI implementation...
Oracle Linux 6 : kernel (ELSA-2011-1189)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1189 advisory. - net nl80211: missing check for valid SSID size in scan operation Stanislaw Gruszka 718157 718158 CVE-2011-2517 - net bluetooth: l2cap and rfcomm: fix...
Ubuntu Update for linux-ec2 USN-1808-1
Check for the Version of linux-ec2 OpenVAS Vulnerability Test $Id: gbubuntuUSN18081.nasl 8448 2018-01-17 16:18:06Z teissa $ Ubuntu Update for linux-ec2 USN-1808-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
USN-1808-1: Linux kernel (EC2) vulnerabilities
Mathias Krause discovered an information leak in the Linux kernel's getsockname implementation for Logical Link Layer llc sockets. A local user could exploit this flaw to examine some of the kernel's stack memory. CVE-2012-6542 Mathias Krause discovered information leaks in the Linux kernel's...
USN-1599-1: Linux kernel (OMAP4) vulnerability
Pablo Neira Ayuso discovered a flaw in the credentials of netlink messages. An unprivileged local attacker could exploit this by getting a netlink based service, that relies on netlink credentials, to perform privileged actions. CVE-2012-3520 Mathias Krause discovered information leak in the Linu...
kernel: bluetooth: buffer overflow in l2cap config request
Integer underflow in the l2capconfigreq function in net/bluetooth/l2capcore.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via a small command-size value within the command header of a Logical...
Buffer overflow
Nokia N70 cell phone allows remote attackers to cause a denial of service reboot or shutdown through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol L2CAP packet whose length field is less than the actual length of the packet, possibly triggering a...