5 matches found
CVE-2024-8798
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr 3.7 and earlier versions that stems from improper validation of user input by the olcpindhandler function...
CVE-2024-8798 Bluetooth: classic: avdtp: missing buffer length check
No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...
CVE-2024-6444
CVE-2024-6444 affects Zephyr’s Bluetooth OTS client: olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c handles input length poorly, enabling potential buffer overflow. Existing connected sources confirm the exact vulnerable component and root cause (missing input length valida...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr that stems from olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c that does not properly validate the length of user input...