Lucene search
K

283 matches found

OSV
OSV
added 2020/11/23 4:23 p.m.12 views

SUSE-SU-2020:3491-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel Azure was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-25656: Fixed a concurrency use-after-free in vtdokdgkbioctl bnc1177766. - CVE-2020-25285: Fixed a race condition between hugetlb sysctl handlers i...

8.8CVSS7.9AI score0.07693EPSS
Exploits9References119
OSV
OSV
added 2020/11/18 10:59 p.m.7 views

OPENSUSE-SU-2020:1962-1 Security update for kernel-firmware

This update for kernel-firmware fixes the following issue: - CVE-2020-12321: Updated the Intel Bluetooth firmware for buffer overflow security bugs bsc1178671. This update was imported from the SUSE:SLE-15-SP1:Update update project...

8.8CVSS9.1AI score0.0097EPSS
Exploits0References3
Fedora
Fedora
added 2020/11/06 1:23 a.m.33 views

[SECURITY] Fedora 32 Update: blueman-2.1.4-1.fc32

Blueman is a tool to use Bluetooth devices. It is designed to provide simpl e, yet effective means for controlling BlueZ API and simplifying bluetooth tas ks such as: - Connecting to 3G/EDGE/GPRS via dial-up - Connecting to/Creating bluetooth networks - Connecting to input devices - Connecting to...

7.1CVSS3.7AI score0.04539EPSS
Exploits4
OSV
OSV
added 2020/10/23 7:23 a.m.10 views

LSN-0073-1 Kernel Live Patch Security Notice

Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...

8.8CVSS7.8AI score0.07693EPSS
Exploits6References4
OSV
OSV
added 2020/10/21 1:7 p.m.11 views

MGASA-2020-0392 Updated kernel packages fix security vulnerabilities

A flaw was found in the way the Linux kernel Bluetooth implementation handled L2CAP packets with A2MP CID. A remote attacker in adjacent range could use this flaw to crash the system causing denial of service or potentially execute arbitrary code on the system by sending a specially crafted L2CAP...

8.8CVSS8.6AI score0.07693EPSS
Exploits9References15
RedHat Linux
RedHat Linux
added 2020/10/19 5:24 p.m.130 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.9AI score0.07693EPSS
Exploits6References4
Prion
Prion
added 2020/10/16 5:15 p.m.14 views

Input validation

An input validation issue existed in Bluetooth. This issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8. An attacker in a privileged network position may be able to perform denial of service attack using malformed Bluetooth packets...

5CVSS6.8AI score0.01221EPSS
Exploits0References2Affected Software3
OPENSUSE Linux
OPENSUSE Linux
added 2020/08/21 12:0 a.m.127 views

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:1236-1 Rating: important References: 1065600 1065729 1120163 1133021 1149032 1152472 1152489 1153274 1154353 1154488 1155518 1155798 1165933 1167773 1168959 1169771 1171857 1171988 1172197 1172201...

7.8CVSS7AI score0.05271EPSS
Exploits4References116
RedHat Linux
RedHat Linux
added 2020/03/31 7:37 p.m.7 views

bluez: failure in disabling Bluetooth discoverability in certain cases may lead to the unauthorized pairing of Bluetooth devices

A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth agent is registered with the system. This situation could lead to the unauthorized pairing of certain Bluetooth devices without any form of authentication...

4.5CVSS5.8AI score0.00458EPSS
Exploits1References4
The Hacker News
The Hacker News
added 2020/02/17 3:10 p.m.104 views

A Dozen Vulnerabilities Affect Millions of Bluetooth LE Powered Devices

A team of cybersecurity researchers late last week disclosed the existence of 12 potentially severe security vulnerabilities, collectively named 'SweynTooth,' affecting millions of Bluetooth-enabled wireless smart devices worldwide—and worryingly, a few of which haven't yet been patched. All...

8.8CVSS7.6AI score0.0181EPSS
Exploits6
OSV
OSV
added 2020/02/12 3:15 p.m.3 views

CVE-2019-19194

The Bluetooth Low Energy Secure Manager Protocol SMP implementation on Telink Semiconductor BLE SDK versions before November 2019 for TLSR8x5x through 3.4.0, TLSR823x through 1.3.0, and TLSR826x through 3.3 devices installs a zero long term key LTK if an out-of-order link-layer encryption request...

8.8CVSS7.7AI score0.01002EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2020/01/22 9:26 p.m.3 views

hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB)

A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced...

8.1CVSS7.1AI score0.02691EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2019/12/09 12:0 a.m.264 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3200-1)

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-19081: Fixed a memory leak in the nfpflowerspawnvnicreprs could have allowed attackers to cause a denial of service bsc1157045. CVE-2019-19080: Fixed fou...

9.8CVSS8AI score0.0776EPSS
Exploits7References392
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/12/02 6:12 a.m.43 views

The snooping girl on a train, again. How to compromise a business

So, I’m on a train, again, sat at a four-seat table, next to two men facing each other. From their conversation and interactions I’ve concluded that they are colleagues. The chap to my left is clearly working on implementation plans for a building management system, for a company I know yeah, I g...

6.5AI score
Exploits0
OSV
OSV
added 2019/10/18 8:13 a.m.15 views

SUSE-SU-2019:2710-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-18595: A double free may be caused by the function allocatetracebuffer in the file kernel/trace/trace.c bnc1149555. - CVE-2019-14821: An out-of-bounds...

8.8CVSS8.1AI score0.02691EPSS
Exploits3References69
OSV
OSV
added 2019/10/17 11:7 a.m.11 views

SUSE-SU-2019:2706-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-15291: There was a NULL pointer dereference, caused by a malicious USB device in the flexcopusbprobe function in the drivers/media/usb/b2c2/flexcop-usb.c...

8.8CVSS8.2AI score0.02691EPSS
Exploits3References58
Microsoft KB
Microsoft KB
added 2019/08/13 7:0 a.m.5687 views

August 13, 2019—KB4512517 (OS Build 14393.3144)

August 13, 2019—KB4512517 OS Build 14393.3144 Reminder: The additional servicing for Windows 10 Enterprise, Education, and IoT Enterprise editions ended on April 9, 2019 and doesn't extend beyond this date. To continue receiving security and quality updates, Microsoft recommends updating to the...

10CVSS7.5AI score0.83433EPSS
Exploits4
Prion
Prion
added 2019/08/08 9:15 p.m.11 views

Code injection

Nespresso Prodigio devices lack Bluetooth connection security...

4.8CVSS8.1AI score0.00569EPSS
Exploits0References1
Securelist
Securelist
added 2019/07/22 10:0 a.m.130 views

On the IoT road: perks, benefits and security of moving smartly

Kaspersky has repeatedly investigated security issues related to IoT technologies for instance, here, or here. Earlier this year our experts have even gained foothold in the security of biomechanical prosthetic devices. The same implies to smart car security: our own research has indicated that...

7.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/06/11 7:0 a.m.280 views

June 11, 2019—KB4503293 (OS Build 18362.175)

June 11, 2019—KB4503293 OS Build 18362.175 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Notes: This release also contains updates for Microsoft HoloLens OS Build 18362.1020 released June 11, 2019. Microsoft will release an update...

9.3CVSS7.8AI score0.48043EPSS
Exploits14
Rows per page
Query Builder