CVE-2022-3565 A critical vulnerability was found in the Linux Kernel function del_timer of the Bluetooth component. Using this issue leads to use after free.
The del_timer function of the file drivers/isdn/mISDN/l1oip_core.c allows changing the time of the next L1OIP packet. If a user can access this function and change its time, he can create a situation when this function is called with a negative value. In this case, the kernel will try to decrease the time of the next L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP packet, and then the function will try to decrease the time of the L1OIP
Handler for SIGUSR1 is triggered
The handler for SIGUSR1 is triggered. This means that the user can send a signal, such as pressing CTRL+C. The signal will cause the process to stop.
Timeline
Published on: 10/17/2022 19:15:00 UTC
Last modified on: 10/20/2022 12:49:00 UTC