CVE-2019-16336
https://notcve.org/view.php?id=CVE-2019-16336
The Bluetooth Low Energy implementation in Cypress PSoC 4 BLE component 3.61 and earlier processes data channel frames with a payload length larger than the configured link layer maximum RX payload size, which allows attackers (in radio range) to cause a denial of service (crash) via a crafted BLE Link Layer frame. La implementación de Bluetooth Low Energy en el plugin Cypress PSoC 4 BLE versiones 3.61 y anteriores, procesa tramas de canal de datos con una longitud de carga útil mayor que el tamaño de carga útil RX máximo de la capa de enlace configurada, lo que permite a atacantes (dentro del radio de alcance) causar una denegación de servicio (bloqueo) por medio de una trama BLE Link Layer diseñado. • https://asset-group.github.io/disclosures/sweyntooth https://community.cypress.com/thread/48573 https://community.cypress.com/thread/53680 https://www.youtube.com/watch?v=Iw8sIBLWE_w • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •