CVE-2025-39889

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> Bluetooth: l2cap: Check encryption key size on incoming connection<br /> <br /> This is required for passing GAP/SEC/SEM/BI-04-C PTS test case:<br /> Security Mode 4 Level 4, Responder - Invalid Encryption Key Size<br /> - 128 bit<br /> <br /> This tests the security key with size from 1 to 15 bytes while the<br /> Security Mode 4 Level 4 requests 16 bytes key size.<br /> <br /> Currently PTS fails with the following logs:<br /> - expected:Connection Response:<br /> Code: [3 (0x03)] Code<br /> Identifier: (lt)WildCard: Exists(gt)<br /> Length: [8 (0x0008)]<br /> Destination CID: (lt)WildCard: Exists(gt)<br /> Source CID: [64 (0x0040)]<br /> Result: [3 (0x0003)] Connection refused - Security block<br /> Status: (lt)WildCard: Exists(gt),<br /> but received:Connection Response:<br /> Code: [3 (0x03)] Code<br /> Identifier: [1 (0x01)]<br /> Length: [8 (0x0008)]<br /> Destination CID: [64 (0x0040)]<br /> Source CID: [64 (0x0040)]<br /> Result: [0 (0x0000)] Connection Successful<br /> Status: [0 (0x0000)] No further information available<br /> <br /> And HCI logs:<br /> HCI Event: Command Complete (0x0e) plen 7<br /> Read Encryption Key Size (0x05|0x0008) ncmd 1<br /> Status: Success (0x00)<br /> Handle: 14 Address: 00:1B:DC:F2:24:10 (Vencer Co., Ltd.)<br /> Key size: 7<br /> &gt; ACL Data RX: Handle 14 flags 0x02 dlen 12<br /> L2CAP: Connection Request (0x02) ident 1 len 4<br /> PSM: 4097 (0x1001)<br /> Source CID: 64<br />