CVE-2022-3637

CWE-404CWE-400Uncontrolled Resource Consumption8 documents7 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 93.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Bluez BluezLinux Kernel
Timeline
PublishedOct 21
Latest updateJul 12

Description

A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function jlink_init of the file monitor/jlink.c of the component BlueZ. The manipulation leads to denial of service. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211936.

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 1.2 | Impact: 1.4

Affected Packages2 packages

CVEListV5linux/kerneln/a
NVDbluez/bluez< 5.65

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
GHSA
GHSA-fm4c-gvmr-hvgr: A vulnerability has been found in Linux Kernel and classified as problematic2022-10-21
OSV
CVE-2022-3637: A vulnerability has been found in Linux Kernel and classified as problematic2022-10-21
CVEList
Linux Kernel BlueZ jlink.c jlink_init denial of service2022-10-21

📋Vendor Advisories

4
Red Hat
openstack-neutron: unrestricted creation of security groups (fix for CVE-2022-3277)2023-07-12
Red Hat
bluez: monitor: Fix crash when using RTT backend2023-03-27
Microsoft
Linux Kernel BlueZ jlink.c jlink_init denial of service2022-10-11
Debian
CVE-2022-3637: bluez - A vulnerability has been found in Linux Kernel and classified as problematic. Th...2022
CVE-2022-3637 (MEDIUM CVSS 5.5) | A vulnerability has been found in L | cvebase.io