Fix the vulnerability of mbed-os #15462 issue #374

chrissnow · 2024-10-16T10:31:32Z

Summary of changes
Set the stateRx variable to HCI_RX_STATE_IDLE when an invalid HCI packet type is detected, to prevent overflow in the hdrRx buffer.

Impact of changes
Migration actions required
Documentation
Pull request type
[X] Patch update (Bug fix / Target update / Docs update / Test update / Refactor)
[] Feature update (New feature / Functionality change / New API)
[] Major update (Breaking change E.g. Return code change / API behaviour change)
Test results
[] No Tests required for this change (E.g docs only update)
[X] Covered by existing mbed-os tests (Greentea or Unittest)
[] Tests / results supplied as part of this PR

…ket type is detected, to prevent overflow in the hdrRx buffer.

Diff-fusion · 2024-11-19T09:57:38Z

This PR fixes CVE-2024-48981

Set the stateRx variable to HCI_RX_STATE_IDLE when an invalid HCI pac…

0b8cb90

…ket type is detected, to prevent overflow in the hdrRx buffer.

multiplemonomials approved these changes Oct 17, 2024

View reviewed changes

multiplemonomials merged commit 2692df3 into mbed-ce:master Oct 17, 2024
52 checks passed

chrissnow deleted the CE_HCI branch October 17, 2024 17:05

Diff-fusion mentioned this pull request Nov 18, 2024

Codrio BLE: ignore packet if data allocation fails (CVE-2024-48985) #384

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fix the vulnerability of mbed-os #15462 issue #374

Fix the vulnerability of mbed-os #15462 issue #374

Uh oh!

chrissnow commented Oct 16, 2024

Uh oh!

Uh oh!

Diff-fusion commented Nov 19, 2024

Uh oh!

Uh oh!

Fix the vulnerability of mbed-os #15462 issue #374

Fix the vulnerability of mbed-os #15462 issue #374

Uh oh!

Conversation

chrissnow commented Oct 16, 2024

Uh oh!

Uh oh!

Diff-fusion commented Nov 19, 2024

Uh oh!

Uh oh!