228 matches found
Exploit for CVE-2025-13834
!DOIhttps://img.shields.io/badge/DOI-10.5281%2Fzenodo.183233...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000555)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000555 advisory. The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001813)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001813 advisory. The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002294)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002294 advisory. The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of...
ROS-20260114-7302
A vulnerability in the rfcommsockalloc function of the net/bluetooth/rfcomm/sock.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001051)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001051 advisory. The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990213)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990213 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the...
Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2024-22099)
NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM net, bluetooth modules allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kernel: v2.6.12-rc2. This plugin only works with...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986501)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986501 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986637)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986637 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987400)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987400 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the...
EUVD-2024-47380
Malicious code in bioql PyPI...
EUVD-2024-53252
Malicious code in bioql PyPI...
EUVD-2022-45536
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-53016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix possible deadlock in rfcommskstatechange syzbot reports a possible deadlock i...
The vulnerability of the `rfcomm_sock_connect()` function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the rfcommsockconnect function in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2024-6258
BT: Missing length checks of netbuf in rfcommhandledata...
kernel: Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: FIX possible deadlock in rfcommskstatechange rfcommskstatechange attempts to use socklock so it must never be called with it locked but rfcommsockioctl always attempt to lock it causing the following trace:...
kernel: Bluetooth: RFCOMM: Fix not validating setsockopt user input
This is a vulnerability in the Linux kernel's Bluetooth RFCOMM protocol. It occurs because the rfcommsocksetsockoptold function fails to properly validate the length of user-supplied data, leading to out-of-bounds memory reads. This flaw could result in system instability or crashes...
The vulnerability of the `rfcomm_sock_alloc()` function in the `net/bluetooth/rfcomm/sock.c` module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the rfcommsockalloc function in the net/bluetooth/rfcomm/sock.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibili...