CVE-2020-25661
Description
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernels Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.64
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2020:4685) kernel security update bpftool-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-abi-whitelists-4.18.0-240.1.1.el8_3.noarch.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-core-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-cross-headers-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-debug-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-debug-core-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-debug-devel-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-debug-modules-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-debug-modules-extra-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-devel-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-doc-4.18.0-240.1.1.el8_3.noarch.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-headers-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-modules-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-modules-extra-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-tools-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update kernel-tools-libs-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update perf-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
| (RHSA-2020:4685) kernel security update python3-perf-4.18.0-240.1.1.el8_3.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234