References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Known Affected Software Configurations Switch to CPE 2.2

Change History

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401

OR
          *cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:6.2:rc4:*:*:*:*:*:*
          *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.0 up to (excluding) 6.1.9

kernel.org: https://git.kernel.org/stable/c/1ed8b37cbaf14574c779064ef1372af62e8ba6aa Types: Patch

kernel.org: https://git.kernel.org/stable/c/8ac6043bd3e5b58d30f50737aedc2e58e8087ad5 Types: Patch

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: hci_sync: fix memory leak in hci_update_adv_data()

When hci_cmd_sync_queue() failed in hci_update_adv_data(), inst_ptr is
not freed, which will cause memory leak, convert to use ERR_PTR/PTR_ERR
to pass the instance to callback so no memory needs to be allocated.

https://git.kernel.org/stable/c/1ed8b37cbaf14574c779064ef1372af62e8ba6aa

https://git.kernel.org/stable/c/8ac6043bd3e5b58d30f50737aedc2e58e8087ad5