9 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-28866
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel through 6.2.8, net/bluetooth/hcisync.c allows out-of-bounds access because ampinit1 and ampinit2 are supposed to have an intentionally inval...
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:2892-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-28866 affecting package kernel 5.10.185.1-1
CVE-2023-28866 affecting package kernel 5.10.185.1-1. A patched version of the package is available...
CVE-2023-28866 affecting package kernel for versions less than 5.15.122.1-2
CVE-2023-28866 affecting package kernel for versions less than 5.15.122.1-2. A patched version of the package is available...
CVE-2023-28866
An out-of-bounds OOB memory access flaw was found in net/bluetooth/hcisync.c due to a missing exit patch while in loop in ampinit1 and ampinit2. This issue could allow an attacker to leak internal kernel information. Mitigation Mitigation for this issue is either not available or the currently...
CVE-2023-28866
In the Linux kernel through 6.2.8, net/bluetooth/hcisync.c allows out-of-bounds access because ampinit1 and ampinit2 are supposed to have an intentionally invalid element, but do not...
CVE-2023-28866
In the Linux kernel through 6.2.8, net/bluetooth/hcisync.c allows out-of-bounds access because ampinit1 and ampinit2 are supposed to have an intentionally invalid element, but do not...
CVE-2023-28866
The CVE-2023-28866 issue affects the Linux kernel up to 6.2.8, specifically net/bluetooth/hci_sync.c, where amp_init1[] and amp_init2[] were intended to include an invalid element but do not, enabling out-of-bounds access. The documented CVSS shows Network access with low attack complexity and no...
CVE-2023-28866
In the Linux kernel through 6.2.8, net/bluetooth/hcisync.c allows out-of-bounds access because ampinit1 and ampinit2 are supposed to have an intentionally invalid element, but do not...