2023-03-27 01:00:36 +00:00
{
"CVE_data_meta" : {
2023-03-27 02:00:36 +00:00
"ASSIGNER" : "cve@mitre.org" ,
2023-03-27 02:01:13 +00:00
"ID" : "CVE-2023-28866" ,
"STATE" : "PUBLIC"
2023-03-27 01:00:59 +00:00
} ,
2023-03-27 02:01:13 +00:00
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
2023-03-27 01:00:36 +00:00
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2023-03-27 02:01:13 +00:00
"value" : "In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"url" : "https://patchwork.kernel.org/project/bluetooth/patch/20230322232543.3079578-1-luiz.dentz@gmail.com" ,
"refsource" : "MISC" ,
"name" : "https://patchwork.kernel.org/project/bluetooth/patch/20230322232543.3079578-1-luiz.dentz@gmail.com"
} ,
{
"url" : "https://lore.kernel.org/lkml/20230321015018.1759683-1-iam@sung-woo.kim/" ,
"refsource" : "MISC" ,
"name" : "https://lore.kernel.org/lkml/20230321015018.1759683-1-iam@sung-woo.kim/"
} ,
{
"url" : "https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=95084403f8c070ccf5d7cbe72352519c1798a40a" ,
"refsource" : "MISC" ,
"name" : "https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=95084403f8c070ccf5d7cbe72352519c1798a40a"
2023-03-27 01:00:36 +00:00
}
]
}
}
