DEBIAN-CVE-2024-26890

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: fix out of bounds memory access The problem is detected by KASAN. btrtl driver uses private hci data to store 'struct btrealtekdata'. If btrtl driver is used with btusb, then memory for private hci data is...

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

CVE-2024-24746

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

CVE-2024-24746

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

CVE-2024-24746 Apache NimBLE: Denial of service in NimBLE Bluetooth stack

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

CVE-2024-24746

CVE-2024-24746: Apache NimBLE's GATT server is vulnerable to a Denial of Service via a specially crafted GATT operation that causes an infinite loop. Affected software: NimBLE up to version 1.6.0; impact is denial of service to the Bluetooth stack/device. Remediation: upgrade to NimBLE 1.7.0 (fix).

CVE-2024-24746 Apache NimBLE: Denial of service in NimBLE Bluetooth stack

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

Apache NimBLE 安全漏洞

Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation in the U.S. It completely replaces the proprietary SoftDevice on the Nordic chipset.It is part of the Apache Mynewt project. A denial-of-service vulnerability exists in Apache NimBLE version 1.6.0 a...

PT-2024-20526 · Apache · Apache Nimble

Name of the Vulnerable Software and Affected Versions: Apache NimBLE versions through 1.6.0 Description: A specially crafted GATT operation can cause an infinite loop in the GATT server, leading to a denial of service in the Bluetooth stack or device. Recommendations: For Apache NimBLE versions...

kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c

A flaw was found in l2capsockrelease in net/bluetooth/l2capsock.c in the Bluetooth subsystem in the Linux Kernel. This issue may allow a user to cause a use-after-free problem due to sk's children being mishandled...

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to execute arbitrary code with root privileges.

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code with root privileges...

CVE-2024-0240

A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be exhausted when sending notifications to multiple clients, this results in all Bluetooth operations, such as advertising and scanning, to stop...

CVE-2024-0240

A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be exhausted when sending notifications to multiple clients, this results in all Bluetooth operations, such as advertising and scanning, to stop...

Memory corruption

A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be exhausted when sending notifications to multiple clients, this results in all Bluetooth operations, such as advertising and scanning, to stop...

CVE-2024-0240 Silicon Labs EFR32 Bluetooth stack denial of service when sending notifications to multiple clients

A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be exhausted when sending notifications to multiple clients, this results in all Bluetooth operations, such as advertising and scanning, to stop...

CVE-2024-0240

CVE-2024-0240 describes a memory leak in Silicon Labs’ Bluetooth stack for EFR32 products that can exhaust memory when sending notifications to multiple clients, causing all Bluetooth operations (advertising, scanning) to stop. Affected component is the Silicon Labs Bluetooth stack for EFR32; roo...

PT-2024-15406 · Silicon · Bluetooth Stack For Efr32

Name of the Vulnerable Software and Affected Versions: Silicon Labs' Bluetooth stack for EFR32 products affected versions not specified Description: A memory leak in the Bluetooth stack may cause memory to be exhausted when sending notifications to multiple clients, resulting in all Bluetooth...

CVE-2024-24858

A race condition was found in the Linux kernel's net/bluetooth in conn,advmin,maxintervalset function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to denial of service...

Linux kernel Competition Condition Problem Vulnerability

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel due to an I2cap connection or broadcast exception in the conn,advmin,maxintervalset method of net/bluetooth...

BlueZ Security Vulnerability

BlueZ is a Bluetooth protocol stack written in C. It is primarily used to provide support for the core Bluetooth layers and protocols. A security vulnerability exists in BlueZ that stems from an out-of-bounds write issue...