CVE-2023-28866

CVSS V2 None CVSS V3 None
Description
In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.
Overview
  • CVE ID
  • CVE-2023-28866
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-03-27T01:15:07
  • Last Modified Date
  • 2023-04-03T13:59:58
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 1 OR 6.2.8
History
Created Old Value New Value Data Type Notes
2023-04-17 03:28:50 Added to TrackCVE
2023-04-17 03:28:52 Weakness Enumeration new