KernelSU-Pixel4XL icon indicating copy to clipboard operation
KernelSU-Pixel4XL copied to clipboard

Published 20 hours ago verified publisher icon msnx

Bluetooth: L2CAP: Access uninitialized memory

Open hucarxiao opened this issue 1 year ago • 2 comments

Version latest

What is the security issue or vulnerability? net/bluetooth/l2cap_core.c: There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_parse_conf_req function which can be used to leak kernel pointers remotely. 3527 line : if (test_bit(FLAG_EFS_ENABLE, &chan->flags))

Security issue or vulnerability information description:https://nvd.nist.gov/vuln/detail/CVE-2022-42895

commit:https://github.com/torvalds/linux/commit/b1a2cd50c0357f243b7435a732b4e62ba3157a2e

Could you apply for another new CVE?

hucarxiao avatar Dec 13 '23 08:12 hucarxiao

Thank you for your reminder about CVE-2022-42895. This vulnerability has been fixed in the current version https://github.com/msnx/KernelSU-Pixel4XL/releases/tag/v0.7.1.

msnx avatar Dec 19 '23 02:12 msnx

https://github.com/msnx/KernelSU-Pixel4XL/commit/2e4b0140a3af4b2cc80553fe0c43cf23b0d9bbe3

msnx avatar Dec 19 '23 02:12 msnx