CVE-2022-3563
published 2022-10-17CVE-2022-3563: A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function read_50_controller_cap_complete of the file…
medium5.7CVSS 3.1
AVAACLPRLUINSUCNINAH
A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function read_50_controller_cap_complete of the file tools/mgmt-tester.c of the component BlueZ. The manipulation of the argument cap_len leads to null pointer dereference. It is recommended to apply a patch to fix this issue. VDB-211086 is the identifier assigned to this vulnerability.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bluez | bluez | < 5.65 | 5.65 |
| bluez | bluez | >= 0 < 5.65-1 | 5.65-1 |
| bluez | bluez | >= 0 < 5.65-1 | 5.65-1 |
| bluez | bluez | >= 0 < 5.65-1 | 5.65-1 |
| bluez | bluez | >= 0 < 5.53-0ubuntu3.8 | 5.53-0ubuntu3.8 |
| bluez | bluez | >= 0 < 5.64-0ubuntu1.3 | 5.64-0ubuntu1.3 |
| bluez | bluez | >= 0 < 5.37-0ubuntu5.3+esm4 | 5.37-0ubuntu5.3+esm4 |
| bluez | bluez | >= 0 < 5.48-0ubuntu3.9+esm2 | 5.48-0ubuntu3.9+esm2 |
| debian | bluez | < bluez 5.65-1 (bookworm) | bluez 5.65-1 (bookworm) |
| linux | kernel | — | — |
| msrc | azl3_bluez_5.63-4_on_azure_linux_3.0 | — | — |
| msrc | azl3_bluez_5.63-6_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| openstack | keystone | >= 0 < 2:21.0.1-0ubuntu2.1 | 2:21.0.1-0ubuntu2.1 |
CVSS provenance
nvdv3.15.7MEDIUMCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv7.4HIGH