The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash (DoS) or potential RCE on the Host layer.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: zephyr
Published: 2023-07-10T04:30:14.243Z
Updated: 2024-08-02T06:05:26.909Z
Reserved: 2023-04-05T22:24:28.688Z
Link: CVE-2023-1902
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-10T16:15:49.053
Modified: 2023-07-17T13:45:49.067
Link: CVE-2023-1902
Redhat
No data.