460 matches found
CLSA-2025-1738592614 kernel: Fix of 26 CVEs
xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer CVE-2024-53103 - scsi: sg: Fix slab-use-after-free read in sgrelease CVE-2024-56631 - net: inet: do not leave a dangling sk pointer in inetcreate CVE-2024-56601 -...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-49035: media: s5pcec: limit msg.len to CECMAXMSGSIZE bsc1215304. CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234853. CVE-2024-53156: wif...
CVE-2024-43763
In buildreadmultirsp of gattsr.cc, there is a possible denial of service due to a logic error in the code. This could lead to remote proximal/adjacent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
Apache NimBLE out-of-bounds read vulnerability (CNVD-2024-47712)
Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation, USA, that completely replaces the proprietary SoftDevice on Nordic chipsets.It is part of the Apache Mynewt project. An out-of-bounds read vulnerability exists in Apache NimBLE, which can be...
CVE-2024-47248 Apache NimBLE: Buffer overflow in NimBLE MESH Bluetooth stack
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in Apache NimBLE. Specially crafted MESH message could result in memory corruption when non-default build configuration is used. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to...
CVE-2024-47248 Apache NimBLE: Buffer overflow in NimBLE MESH Bluetooth stack
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in Apache NimBLE. Specially crafted MESH message could result in memory corruption when non-default build configuration is used. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to...
Apache NimBLE 安全漏洞
Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation, USA, that completely replaces the proprietary SoftDevice on Nordic chipsets.It is part of the Apache Mynewt project. An out-of-bounds read vulnerability exists in Apache NimBLE, which can be...
Apache NimBLE 安全漏洞
Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation, USA, that completely replaces the proprietary SoftDevice on Nordic chipsets.It is part of the Apache Mynewt project. A security vulnerability exists in Apache NimBLE 1.7.0 and prior versions, which...
The vulnerability of the HID Profile interface of the Bluetooth protocol stack for the Linux BlueZ operating system allows a perpetrator to execute arbitrary commands.
The vulnerability of the HID Profile interface of the Bluetooth protocol stack for the Linux BlueZ operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...
BTstack 安全漏洞
BTstack is an open source Bluetooth stack implementation from BlueKitchen. A security vulnerability exists in versions prior to BTstack v.864e2f2b6b7878c8fab3cf5ee84ae566e3380c58, which originates in the src/mesh/pbadv.c component and is prone to a buffer overflow...
CLSA-2024-1723806933 Fix of 55 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-39467 - f2fs: fix to do sanity check on ixattrnid in sanitycheckinode CVE-url: https://ubuntu.com/security/CVE-2024-36940 - pinctrl: core: delete incorrect free in pinctrlenable CVE-url: https://ubuntu.com/security/CVE-2024-38659 - enic: Validate leng...
DEBIAN-CVE-2022-48844
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix leaking sentcmd skb sentcmd memory is not freed before freeing hcidev causing it to leak it contents...
The vulnerability of the hci_le_big_sync_established_evt() function in the Linux operating system’s Bluetooth kernel implementation allows a attacker to cause a service failure.
The vulnerability of the hcilebigsyncestablishedevt function in the net/bluetooth/hcievent.c module of the Linux operating system’s Bluetooth kernel implementation is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2024-33454
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the Bluetooth stack component...
CVE-2024-33454
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the Bluetooth stack component...
CVE-2024-33454
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the Bluetooth stack component...
CVE-2024-33454
CVE-2024-33454 affects Espressif ESP-IDF 5.1 Bluetooth stack. A buffer overflow in the Bluetooth component allows a remote attacker to execute arbitrary code by sending a crafted script. The vulnerability is documented with CVSS v3.1: Network attack, high privileges required, no user interaction,...
The vulnerability of the Audio Profile AVRCP component of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to execute arbitrary code.
The vulnerability of the Audio Profile AVRCP component in the Bluetooth protocol stack for the Linux BlueZ operating system is related to buffer overflow attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Phone Book Access component of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to execute arbitrary code.
The vulnerability of the Phone Book Access component in the Bluetooth protocol stack for the Linux BlueZ operating system is related to buffer overflow attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
BlueZ 安全漏洞
BlueZ is a Bluetooth protocol stack written in C. It is primarily used to provide support for the core Bluetooth layer and protocol. A security vulnerability exists in BlueZ that stems from the presence of an out-of-bounds read information disclosure vulnerability, which allows network neighbor...