AVG-850

Package linux
Status Vulnerable
Severity Medium
Type information disclosure
Affected 4.20.arch1-1
Fixed Unknown
Current 4.20.2.arch1-1 [testing]
4.20.1.arch1-1 [core]
Ticket Create
Created Fri Jan 11 19:46:53 2019
Issue Severity Remote Type Description
CVE-2019-3460 Medium Yes Information disclosure
In the function l2cap_get_conf_opt (l2cap_core.c), which is used to parse configuration elements during an L2cap connection negotiation process.

In this...
CVE-2019-3459 Medium Yes Information disclosure
In the functions l2cap_parse_conf_rsp, l2cap_parse_conf_req (l2cap_core.c), and other locations, there is a while loop which is used to parse configuration...