Fluid Attacks Database

Description

A flaw was found in the firmware of some Intel Bluetooth devices. This may allow an unauthenticated attacker within Bluetooth range to overflow a buffer and corrupt memory leading to a crash or privilege escalation.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel8	linux-firmware	<0:20200619-101.git3890db36.el8_3	0:20200619-101.git3890db36.el8_3
rpm rhel8.2	linux-firmware	<0:20191202-99.gite8a0f4c9.el8_2	0:20191202-99.gite8a0f4c9.el8_2
rpm rhel7	linux-firmware	<0:20200421-80.git78c0348.el7_9	0:20200421-80.git78c0348.el7_9
rpm rhel8.1	linux-firmware	<0:20190516-96.git711d3297.el8_1	0:20190516-96.git711d3297.el8_1

Aliases

1. CVE-2020-123212. NVD-2020-123213. OSV-2020-12321

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.