3 matches found
CVE-2023-1902 HCI Connection Creation Dangling State Reference Re-use
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902 HCI Connection Creation Dangling State Reference Re-use
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902
CVE-2023-1902 concerns Zephyr RTOS: the Bluetooth HCI host layer does not clear a global reference to a state pointer after processing connection events. This can let a malicious HCI Controller reuse a dangling reference in the host layer, causing a crash (DoS) or potential remote code execution....