This security bulletin contains one low risk vulnerability.
CWE-119 - Memory corruption
Exploit availability: NoDescription
The vulnerability allows an attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the del_timer() function in drivers/isdn/mISDN/l1oip_core.c in the Bluetooth component. An attacker with physical proximity to device can trigger memory corruption and execute arbitrary code on the target system.
Install updates from vendor's website.Vulnerable software versions
Linux kernel: All versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?