CVE-2023-53827
Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}
Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free
caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to
prevent referencing a channel that is about to be destroyed.
Produtos afetados
Linux · LinuxQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421ahttps://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958