Yuli Shapiro

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.1-rc1 **Description** A heap data infoleak was found in multiple locations, including the `L2CAP PARSE CONF RSP` function, in the Linux kernel. This issue is related to a buffer overflow in the heap, which can be exploited by a remote attacker to gain access to confidential data. **Recommendations** For Linux kernel versions prior to 5.1-rc1, update to a version 5.1-rc1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `L2CAP PARSE CONF RSP` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.1-rc1 **Description** A heap address information leak was discovered in the Linux kernel, related to the function L2CAP GET CONF OPT. This issue is associated with a buffer overflow in the heap, which can be exploited by a remote attacker to access confidential data. **Recommendations** For Linux kernel versions prior to 5.1-rc1, update to version 5.1-rc1 or later to resolve the issue. As a temporary workaround, consider restricting access to the L2CAP GET CONF OPT function until a patch is available.