{ "dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": { "cveId": "CVE-2021-47620", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-06-20T11:03:43.235Z", "datePublished": "2024-06-20T11:08:09.320Z", "dateUpdated": "2026-05-11T13:58:03.194Z" }, "containers": { "cna": { "providerMetadata": { "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T13:58:03.194Z" }, "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: refactor malicious adv data check\n\nCheck for out-of-bound read was being performed at the end of while\nnum_reports loop, and would fill journal with false positives. Added\ncheck to beginning of loop processing so that it doesn't get checked\nafter ptr has been advanced." } ], "affected": [ { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/bluetooth/hci_event.c" ], "versions": [ { "version": "048acfa4daf167b007b6bd8bef474e90c2282a5f", "lessThan": "305e92f525450f3e1b5f5c9dc7eadb152d66a082", "status": "affected", "versionType": "git" }, { "version": "7d4238edd3bf8b8c75571cc3b382bc10438ac588", "lessThan": "7889b38a7f21ed19314f83194622b195d328465c", "status": "affected", "versionType": "git" }, { "version": "185c77cbb53bc7481acc5a0b4e6119bbe393d561", "lessThan": "5a539c08d743d9910631448da78af5e961664c0e", "status": "affected", "versionType": "git" }, { "version": "4a1491432394b22e585a185ffca49086e4046aae", "lessThan": "8819f93cd4a443dfe547aa622b21f723757df3fb", "status": "affected", "versionType": "git" }, { "version": "24161b9c43de966789d5956428f45002d10f878e", "lessThan": "835d3706852537bf92eb23eb8635b8dee0c0aa67", "status": "affected", "versionType": "git" }, { "version": "ffc9019bd991707701273c2e5d8aed472229fc4d", "lessThan": "83d5196b65d1b29e27d7dd16a3b9b439fb1d2dba", "status": "affected", "versionType": "git" }, { "version": "2de0e6a71ceb056e17e4684dce8b7640367996f9", "lessThan": "bcea886771c3f22a590c8c8b9139a107bd7f1e1c", "status": "affected", "versionType": "git" }, { "version": "640a476e38fce6c70c738ac09e5167e34f570303", "lessThan": "5c968affa804ba98c3c603f37ffea6fba618025e", "status": "affected", "versionType": "git" }, { "version": "3a56ef719f0b9682afb8a86d64b2399e36faa4e6", "lessThan": "899663be5e75dc0174dc8bda0b5e6826edf0b29a", "status": "affected", "versionType": "git" } ] }, { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/bluetooth/hci_event.c" ], "versions": [ { "version": "4.4.300", "lessThan": "4.4.302", "status": "affected", "versionType": "semver" }, { "version": "4.9.298", "lessThan": "4.9.300", "status": "affected", "versionType": "semver" }, { "version": "4.14.263", "lessThan": "4.14.265", "status": "affected", "versionType": "semver" }, { "version": "4.19.226", "lessThan": "4.19.228", "status": "affected", "versionType": "semver" }, { "version": "5.4.174", "lessThan": "5.4.176", "status": "affected", "versionType": "semver" }, { "version": "5.10.94", "lessThan": "5.10.96", "status": "affected", "versionType": "semver" }, { "version": "5.15.17", "lessThan": "5.15.19", "status": "affected", "versionType": "semver" }, { "version": "5.16.3", "lessThan": "5.16.5", "status": "affected", "versionType": "semver" } ] } ], "cpeApplicability": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.4.300", "versionEndExcluding": "4.4.302" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.9.298", "versionEndExcluding": "4.9.300" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14.263", "versionEndExcluding": "4.14.265" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.19.226", "versionEndExcluding": "4.19.228" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.4.174", "versionEndExcluding": "5.4.176" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.10.94", "versionEndExcluding": "5.10.96" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.15.17", "versionEndExcluding": "5.15.19" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16.3", "versionEndExcluding": "5.16.5" } ] } ] } ], "references": [ { "url": "https://git.kernel.org/stable/c/305e92f525450f3e1b5f5c9dc7eadb152d66a082" }, { "url": "https://git.kernel.org/stable/c/7889b38a7f21ed19314f83194622b195d328465c" }, { "url": "https://git.kernel.org/stable/c/5a539c08d743d9910631448da78af5e961664c0e" }, { "url": "https://git.kernel.org/stable/c/8819f93cd4a443dfe547aa622b21f723757df3fb" }, { "url": "https://git.kernel.org/stable/c/835d3706852537bf92eb23eb8635b8dee0c0aa67" }, { "url": "https://git.kernel.org/stable/c/83d5196b65d1b29e27d7dd16a3b9b439fb1d2dba" }, { "url": "https://git.kernel.org/stable/c/bcea886771c3f22a590c8c8b9139a107bd7f1e1c" }, { "url": "https://git.kernel.org/stable/c/5c968affa804ba98c3c603f37ffea6fba618025e" }, { "url": "https://git.kernel.org/stable/c/899663be5e75dc0174dc8bda0b5e6826edf0b29a" } ], "title": "Bluetooth: refactor malicious adv data check", "x_generator": { "engine": "bippy-1.2.0" } }, "adp": [ { "metrics": [ { "other": { "type": "ssvc", "content": { "timestamp": "2024-06-20T13:36:51.279922Z", "id": "CVE-2021-47620", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "version": "2.0.3" } } } ], "title": "CISA ADP Vulnrichment", "providerMetadata": { "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-20T13:36:59.452Z" } }, { "providerMetadata": { "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:47:40.577Z" }, "title": "CVE Program Container", "references": [ { "url": "https://git.kernel.org/stable/c/305e92f525450f3e1b5f5c9dc7eadb152d66a082", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/7889b38a7f21ed19314f83194622b195d328465c", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/5a539c08d743d9910631448da78af5e961664c0e", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/8819f93cd4a443dfe547aa622b21f723757df3fb", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/835d3706852537bf92eb23eb8635b8dee0c0aa67", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/83d5196b65d1b29e27d7dd16a3b9b439fb1d2dba", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/bcea886771c3f22a590c8c8b9139a107bd7f1e1c", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/5c968affa804ba98c3c603f37ffea6fba618025e", "tags": [ "x_transferred" ] }, { "url": "https://git.kernel.org/stable/c/899663be5e75dc0174dc8bda0b5e6826edf0b29a", "tags": [ "x_transferred" ] } ] } ] } }