Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.
- https://seclists.org/bugtraq/2019/Jun/26
- https://usn.ubuntu.com/4068-1/
- https://usn.ubuntu.com/4069-2/
- https://usn.ubuntu.com/4076-1/
- https://usn.ubuntu.com/4118-1/
- https://github.com/ARPSyndicate/cvemon