CVE-2024-34727 - Heap Buffer Overflow Vulnerability in `sdp_utils.cc` Enables Remote Information Disclosure (Analysis and Exploit)
A new security flaw, CVE-2024-34727, has been discovered in the sdpu_compare_uuid_with_attr function within the widely used Bluetooth stack implementation. This issue
CVE-2024-31320 - How a Silent Companion Device Association Bug Can Escalate Privileges on Android
In early 2024, a new Android security vulnerability was discovered and tracked as CVE-2024-31320. It resides in the setSkipPrompt method of AssociationRequest.java. This flaw
CVE-2024-36011 - Exploiting and Understanding the Linux Kernel Bluetooth Null Pointer Dereference
In mid-2024, a new vulnerability — CVE-2024-36011 — was discovered and patched in the Linux kernel. This issue centers on the Bluetooth subsystem, specifically the "Host
CVE-2024-36012 - Slab Use-After-Free in Linux Kernel Bluetooth `msft_do_close()`
CVE-2024-36012 is a newly resolved vulnerability in the Linux kernel’s Bluetooth stack, specifically relating to Microsoft's Bluetooth extensions (msft feature). The vulnerability
CVE-2024-36013 - Use-After-Free in Linux Kernel Bluetooth L2CAP (`l2cap_connect`) (Exploit, Technical Details, and Fix)
In June 2024, a critical vulnerability (CVE-2024-36013) was disclosed and patched in the Linux kernel’s Bluetooth stack (specifically, the L2CAP layer). This exclusive writeup
Episode
00:00:00
00:00:00