CVE-2023-54214
Bluetooth: L2CAP: Fix potential user-after-free
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: L2CAP: Fix potential user-after-free
This fixes all instances of which requires to allocate a buffer calling
alloc_skb which may release the chan lock and reacquire later which
makes it possible that the chan is disconnected in the meantime.
Produtos afetados
Linux · LinuxQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://git.kernel.org/stable/c/31a288a4df7f6a28e65da22a4ab2add4a963738ehttps://git.kernel.org/stable/c/60aaccf16d1e099c16bebfb96428ae762cb528f7https://git.kernel.org/stable/c/64e28ecf44e46de9f01915a4146706a21c3469d2https://git.kernel.org/stable/c/994e3e18908f5c4a12d07b44018e6aa85f071048https://git.kernel.org/stable/c/a6a7d1541fefddf7ca0cfb34c1bff63ff809cc49https://git.kernel.org/stable/c/b2fde8cb2a25125111f2144604e0e7c0ebcc4bbahttps://git.kernel.org/stable/c/b8ed41cc04fb74005aa51d17865ca3d022760335https://git.kernel.org/stable/c/df5703348813235874d851934e957c3723d71644