Lucene search
K

7 matches found

Redos
Redos
added 2026/01/14 12:0 a.m.9 views

ROS-20260114-7302

A vulnerability in the rfcommsockalloc function of the net/bluetooth/rfcomm/sock.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

7.8CVSS8.8AI score0.00219EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.8 views

The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s Bluetooth kernel component is related to incorrect blocking of resources in the function rfcommsockioctl. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00187EPSS
Exploits0References17Affected Software9
CVE
CVE
added 2025/03/27 4:43 p.m.118 views

CVE-2023-53016

CVE-2023-53016 concerns a potential deadlock in the Linux kernel Bluetooth rfcomm path. The issue arises when rfcomm_sock_connect holds the sk lock while waiting for the rfcomm lock, and rfcomm_sock_release may hold the rfcomm lock and attempt to acquire the sk lock, creating a deadlock scenario....

5.5CVSS6.7AI score0.00137EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/12/27 3:15 p.m.5 views

AZL-55611 CVE-2024-56604 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcommsockalloc btsockalloc attaches allocated sk object to the provided sock object. If rfcommdlcalloc fails, we release the sk object, but leave the dangling pointer in th...

7.8CVSS6.3AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2013/04/22 11:41 a.m.1 views

DEBIAN-CVE-2013-3225

The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS5.4AI score0.00378EPSS
Exploits0References1
OSV
OSV
added 2013/04/22 12:0 a.m.3 views

UBUNTU-CVE-2013-3225

The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6.4AI score0.00378EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2010/08/10 5:35 p.m.3 views

kernel: bluetooth: potential bad memory access with sysfs files

Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service memory corruption via a large number of Bluetooth sockets, related to the size of sysfs files in 1 net/bluetooth/l2cap.c, 2 net/bluetooth/rfcomm/core.c, 3...

7.1CVSS5.9AI score0.02979EPSS
Exploits1References4
Rows per page
Query Builder