PT-2022-36615 · Linux · Linux Kernel
Published
2022-12-08
·
Updated
2022-12-08
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Linux Kernel versions prior to v4.9.333
Description
The issue is related to a use-after-free in the
l2cap conn del() function. This problem was introduced in version v4.9.326 and is fixed in version v4.9.333. The actual impact and attack plausibility have not yet been proven.Recommendations
For Linux Kernel versions prior to v4.9.333, update to version v4.9.333 or later to resolve the issue. As a temporary workaround, consider restricting access to the
l2cap conn del() function until a patch is available. Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel