adafruit-mirror/zephyr
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 9

doc: security: Disclose CVE-2024-8798

Browse source 
Disclose information about published CVE.

Signed-off-by: Flavio Ceolin <flavio.ceolin@gmail.com>
This commit is contained in:
Flavio Ceolin 2024-12-15 15:36:30 -08:00 committed by Benjamin Cabé
parent 85da246b1c
commit c616a1719f
1 changed files with 12 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
doc/security/vulnerabilities.rst
View file

@ -1788,7 +1788,18 @@ This has been fixed in main for v3.7.0
:cve:`2024-8798`
----------------
Under embargo until 2024-11-22
Bluetooth: classic: avdtp: missing buffer length check
- `Zephyr project bug tracker GHSA-r7pm-f93f-f7fp
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-r7pm-f93f-f7fp>`_
This has been fixed in main for v4.0.0
- `PR 77969 fix for main
<https://github.com/zephyrproject-rtos/zephyr/pull/77969>`_
- `PR 78409 fix for 3.7
<https://github.com/zephyrproject-rtos/zephyr/pull/78409>`_
:cve:`2024-10395`
-----------------