The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel prior to 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
fedoraproject fedora 28 |
||
fedoraproject fedora 29 |
||
fedoraproject fedora 30 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 19.04 |
||
canonical ubuntu linux 16.04 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux eus 8.1 |
||
redhat enterprise linux eus 8.2 |
||
redhat enterprise linux server tus 8.2 |
||
redhat enterprise linux server aus 8.2 |
||
redhat enterprise linux server tus 8.4 |
||
redhat enterprise linux eus 8.4 |
||
redhat enterprise linux for real time for nfv tus 8.4 |
||
redhat enterprise linux for real time for nfv tus 8.2 |
||
redhat enterprise linux for real time tus 8.4 |
||
redhat enterprise linux for real time tus 8.2 |
||
redhat enterprise linux server aus 8.4 |
||
redhat enterprise linux for real time 8.0 |
||
redhat enterprise linux server aus 8.6 |
||
redhat enterprise linux server tus 8.6 |
||
redhat enterprise linux eus 8.6 |
||
redhat enterprise linux for real time for nfv tus 8.6 |
||
redhat enterprise linux for real time tus 8.6 |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
opensuse leap 15.1 |