5 matches found
CVE-2024-6444
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
CVE-2024-6444
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
CVE-2024-6444
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
CVE-2024-6444 Bluetooth: ots: missing buffer length check
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
CVE-2024-6444
CVE-2024-6444 affects Zephyr’s Bluetooth OTS client: olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c handles input length poorly, enabling potential buffer overflow. Existing connected sources confirm the exact vulnerable component and root cause (missing input length valida...