Skip to content

Commit

Permalink
doc: security: Disclose CVE-2024-8798
Browse files Browse the repository at this point in the history 
Disclose information about published CVE.

Signed-off-by: Flavio Ceolin <[email protected]>
  • Loading branch information
@ceolin @kartben
ceolin authored and kartben committed Dec 16, 2024
1 parent 85da246 commit c616a17
Showing 1 changed file with 12 additions and 1 deletion.
13 changes: 12 additions & 1 deletion doc/security/vulnerabilities.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1788,7 +1788,18 @@ This has been fixed in main for v3.7.0
:cve:`2024-8798`
----------------

Under embargo until 2024-11-22
Bluetooth: classic: avdtp: missing buffer length check

- `Zephyr project bug tracker GHSA-r7pm-f93f-f7fp
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-r7pm-f93f-f7fp>`_

This has been fixed in main for v4.0.0

- `PR 77969 fix for main
<https://github.com/zephyrproject-rtos/zephyr/pull/77969>`_

- `PR 78409 fix for 3.7
<https://github.com/zephyrproject-rtos/zephyr/pull/78409>`_

:cve:`2024-10395`
-----------------
Expand Down

0 comments on commit c616a17

Please sign in to comment.