Home

CVE-2020-25662

Description

A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernels Bluetooth stack implementation handled the initialization of stack memory when handling certain AMP packets. This flaw allows a remote attacker in an adjacent range to leak small portions of stack memory on the system by sending specially crafted AMP packets. The highest threat from this vulnerability is to data confidentiality.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.756

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2020:4685) kernel security update bpftool-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-abi-whitelists-4.18.0-240.1.1.el8_3.noarch.rpmLinux
(RHSA-2020:4685) kernel security update kernel-core-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-cross-headers-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-debug-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-debug-core-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-debug-devel-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-debug-modules-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-debug-modules-extra-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-devel-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-doc-4.18.0-240.1.1.el8_3.noarch.rpmLinux
(RHSA-2020:4685) kernel security update kernel-headers-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-modules-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-modules-extra-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-tools-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update kernel-tools-libs-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update perf-4.18.0-240.1.1.el8_3.x86_64.rpmLinux
(RHSA-2020:4685) kernel security update python3-perf-4.18.0-240.1.1.el8_3.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234