Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-28866

Опубликовано: 27 мар. 2023
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

An out-of-bounds (OOB) memory access flaw was found in net/bluetooth/hci_sync.c due to a missing exit patch while in loop in amp_init1[] and amp_init2[]. This issue could allow an attacker to leak internal kernel information.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise Linux 9kernel-rtAffected
Red Hat Virtualization 4redhat-virtualization-hostNot affected
Red Hat Enterprise Linux 9kernelFixedRHSA-2024:239430.04.2024
Red Hat Enterprise Linux 9kernelFixedRHSA-2024:239430.04.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=2185519kernel: Bluetooth: HCI: global out-of-bounds access in net/bluetooth/hci_sync.c

EPSS

Процентиль: 5%
0.00025
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2023-28866

CVSS3: 5.3
ubuntu
около 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

nvd логотип

CVE-2023-28866

CVSS3: 5.3
nvd
около 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

debian логотип

CVE-2023-28866

CVSS3: 5.3
debian
около 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out ...

github логотип

GHSA-qpqg-8rvq-f5c4

CVSS3: 5.3
github
около 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

fstec логотип

BDU:2023-01778

CVSS3: 5.3
fstec
больше 2 лет назад

Уязвимость функции hci_init_stage_sync() (net/bluetooth/hci_sync.c) ядра операционной системы Linux, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 5%
0.00025
Низкий

5.3 Medium

CVSS3