Linux Kernel BlueZ tools/mgmt-tester.c read_50_controller_cap_complete cap_len null pointer dereference
A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function read_50_controller_cap_complete
of the file tools/mgmt-tester.c of the component BlueZ. The manipulation of the argument cap_len leads to null pointer dereference. Using CWE to declare the problem leads to CWE-476. The weakness was released 10/17/2022. The advisory is available at git.kernel.org.
This vulnerability is traded as CVE-2022-3563. The attack can only be done within the local network. Technical details are available. There is no exploit available. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment.
It is declared as not defined. As 0-day the estimated underground price was around $0-$5k.
The bugfix is ready for download at git.kernel.org. It is recommended to apply a patch to fix this issue. A possible mitigation has been published even before and not after the disclosure of the vulnerability.