Cvinayak

**Name of the Vulnerable Software and Affected Versions** zephyrproject-rtos zephyr versions 1.14.0 through 2.2.0 and later versions. **Description** The issue is related to improper handling of the full-buffer case in the Zephyr Bluetooth implementation, which can result in memory corruption. **Recommendations** For versions 1.14.0 and later, consider disabling Bluetooth functionality until a patch is available. For versions 2.2.0 and later, consider restricting access to the Bluetooth module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** zephyrproject-rtos zephyr versions 1.14.0 through 2.2.0 and later versions **Description** The issue is related to the Bluetooth subsystem in the Zephyr project, where certain duplicate and back-to-back packets can cause incorrect behavior. This results in a denial of service. **Recommendations** For versions 1.14.0 and later, consider disabling the Bluetooth subsystem until a patch is available. For versions 2.2.0 and later, consider restricting the handling of duplicate and back-to-back packets to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.