btmon: fix segfault caused by buffer over-read Fix segfault caused by buffer over-read in service_rsp function of monitor/sdp.c. This bug can be triggered locally reading malformed btmon capture file and also over the air by sending specifically crafted SDP Search Attribute response to device running btmon. Bug was found by fuzzing btmon with AFL.

Diffstat

1 files changed, 4 insertions(+), 0 deletions(-)