CVE-2020-12321 – hardware: buffer overflow in bluetooth firmware

https://notcve.org/view.php?id=CVE-2020-12321

Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Una restricción de búfer inapropiada en algunos productos Intel® Wireless Bluetooth® anterior a versión 21.110, puede habilitar a un usuario no autenticado para permitir potencialmente una escalada de privilegios por medio de un acceso adyacente A flaw was found in the firmware of some Intel Bluetooth devices. This may allow an unauthenticated attacker within Bluetooth range to overflow a buffer and corrupt memory leading to a crash or privilege escalation. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403 https://access.redhat.com/security/cve/CVE-2020-12321 https://bugzilla.redhat.com/show_bug.cgi?id=1893914 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •