Vulnerability/
CVE-2021-47620

5.5

CWE

125

20/6/2024

4/11/2024

CVE-2021-47620: Bluetooth: refactor malicious adv data check

First published: Thu Jun 20 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: refactor malicious adv data check Check for out-of-bound read was being performed at the end of while num_reports loop, and would fill journal with false positives. Added check to beginning of loop processing so that it doesn't get checked after ptr has been advanced.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Linux kernel	<4.4.302
Linux Linux kernel	>=4.5<4.9.300
Linux Linux kernel	>=4.10<4.14.265
Linux Linux kernel	>=4.15<4.19.228
Linux Linux kernel	>=4.20<5.4.176
Linux Linux kernel	>=5.5<5.10.96
Linux Linux kernel	>=5.11<5.15.19
Linux Linux kernel	>=5.16<5.16.5

Remedy

https://git.kernel.org/stable/c/305e92f525450f3e1b5f5c9dc7eadb152d66a082

Remedy

https://git.kernel.org/stable/c/5a539c08d743d9910631448da78af5e961664c0e

Remedy

https://git.kernel.org/stable/c/5c968affa804ba98c3c603f37ffea6fba618025e

Remedy

https://git.kernel.org/stable/c/7889b38a7f21ed19314f83194622b195d328465c

Remedy

https://git.kernel.org/stable/c/835d3706852537bf92eb23eb8635b8dee0c0aa67

Remedy

https://git.kernel.org/stable/c/83d5196b65d1b29e27d7dd16a3b9b439fb1d2dba

Remedy

https://git.kernel.org/stable/c/8819f93cd4a443dfe547aa622b21f723757df3fb

Remedy

https://git.kernel.org/stable/c/899663be5e75dc0174dc8bda0b5e6826edf0b29a

Remedy

https://git.kernel.org/stable/c/bcea886771c3f22a590c8c8b9139a107bd7f1e1c

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Example email

Reference Links

agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
collector/mitre-cve
source/MITRE
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/remedy
agent/weakness
agent/severity
agent/last-modified-date
agent/tags
agent/softwarecombine
vendor/linux
canonical/linux linux kernel
version/linux linux kernel/4.5
version/linux linux kernel/4.10
version/linux linux kernel/4.15
version/linux linux kernel/4.20
version/linux linux kernel/5.5
version/linux linux kernel/5.11
version/linux linux kernel/5.16

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203