26 matches found
CVE-2026-45834
CVE-2026-45834 affects the Linux kernel Bluetooth stack, specifically the L2CAP path. The vulnerability is a potential null pointer dereference in l2cap_sock_state_change_cb() . The fix adds the same NULL guard already present in l2cap_sock_resume_cb() and l2cap_sock_ready_cb() , per the provided...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15
A vulnerability was discovered in the HCI socket implementation due to a missing capability check in the net/bluetooth/hcisock.c file within the Linux kernel. This flaw allows an attacker to execute management commands without authorization, compromising the confidentiality, integrity, and...
EUVD-2010-1116
Malware in sbrugna...
EUVD-2008-5706
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414665)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414665 advisory. A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity check fo...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414306)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414306 advisory. A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an...
Linux Distros Unpatched Vulnerability : CVE-2020-35499
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity che...
Kernel: bluetooth: Unauthorized management command execution
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...
Kernel: bluetooth: Unauthorized management command execution
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...
Kernel: bluetooth: Unauthorized management command execution
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands compromising the confidentiality integrity and availability of Bluetooth communication.
...
OESA-2023-1284 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands,...
CVE-2020-35499
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BTSNDMTU/BTRCVMTU for SCO sockets. This could allow a local attacker with a special user privilege...
DEBIAN-CVE-2020-35499
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BTSNDMTU/BTRCVMTU for SCO sockets. This could allow a local attacker with a special user privilege...
Null pointer dereference
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BTSNDMTU/BTRCVMTU for SCO sockets. This could allow a local attacker with a special user privilege...
USN-2890-2 linux-lts-wily vulnerabilities
It was discovered that a use-after-free vulnerability existed in the AFUNIX implementation in the Linux kernel. A local attacker could use crafted epollctl calls to cause a denial of service system crash or expose sensitive information. CVE-2013-7446 It was discovered that the KVM implementation ...
kernel: bluetooth: potential bad memory access with sysfs files
Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service memory corruption via a large number of Bluetooth sockets, related to the size of sysfs files in 1 net/bluetooth/l2cap.c, 2 net/bluetooth/rfcomm/core.c, 3...
Memory corruption
Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service memory corruption via a large number of Bluetooth sockets, related to the size of sysfs files in 1 net/bluetooth/l2cap.c, 2 net/bluetooth/rfcomm/core.c, 3...
CVE-2010-1084
Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service memory corruption via a large number of Bluetooth sockets, related to the size of sysfs files in 1 net/bluetooth/l2cap.c, 2 net/bluetooth/rfcomm/core.c, 3...
CVE-2010-1084
Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service memory corruption via a large number of Bluetooth sockets, related to the size of sysfs files in 1 net/bluetooth/l2cap.c, 2 net/bluetooth/rfcomm/core.c, 3...