CVE-2022-3564 A critical vulnerability was found in Linux Kernel's function l2cap_reassemble_sdu of the component Bluetooth. The manipulation leads to use after free.

Vulnerability in the system of Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_sdu of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211087.


Vulnerability in the system of Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_sdu of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211087.



3.2 Critical Vulnerability in Android OS Affected by this vulnerability is the function brcmf_cfg80211_mgmt_tx of the file drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the component Wi-Fi. The manipulation leads to information disclosure. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-219298.


3.3 Major Vulnerability in Android OS Affected by this vulnerability is the function brcmf_cfg80211_mgmt_tx of the file drivers/

3.3.1 Description of the Major Vulnerability in the Android OS

The function brcmf_cfg80211_mgmt_tx of the file drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the component Wi-Fi, in different conditions, allows to access and read arbitrary memory which leads to information disclosure. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-219298.

^ ^

This blog post discusses the top 3 risks of using social platforms.

3.3.1 Description of the vulnerability

The function brcmf_cfg80211_mgmt_tx of the file drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the component Wi-Fi. The manipulation leads to information disclosure. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-219298.

3.3 Major Vulnerability in Android OS Affected by this vulnerability is the function brcmf_cfg80211_mgmt_tx of the file drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c of the component Wi-Fi. The manipulation leads to information disclosure. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-219298.

Timeline

Published on: 10/17/2022 19:15:00 UTC
Last modified on: 10/20/2022 12:48:00 UTC

References

• https://vuldb.com/?id.211087
• https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=89f9f3cb86b1c63badaf392a83dd661d56cc50b1
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3564