Описание
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-25661
- https://access.redhat.com/errata/RHSA-2020:4685
- https://access.redhat.com/errata/RHSA-2020:4686
- https://access.redhat.com/security/cve/CVE-2020-12351
- https://access.redhat.com/security/cve/CVE-2020-25661
- https://access.redhat.com/security/vulnerabilities/BleedingTooth
- https://bugzilla.redhat.com/show_bug.cgi?id=1891483
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25661
Связанные уязвимости
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
A Red Hat only CVE-2020-12351 regression issue was found in the way th ...
Уязвимость реализации стека Bluetooth в ядре операционной системы Red Hat Enterprise Linux, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код