From 078967671c9038367edeb60818c0e69015320e32 Mon Sep 17 00:00:00 2001
From: Flavio Ceolin <flavio.ceolin@intel.com>
Date: Tue, 26 Sep 2023 11:42:57 -0700
Subject: [PATCH] doc: vuln: Add information about CVE-2023-4264

Information about CVE-2023-4264

Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>
---
 doc/security/vulnerabilities.rst | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/doc/security/vulnerabilities.rst b/doc/security/vulnerabilities.rst
index b7529a73d5e7bb..af9b597197992d 100644
--- a/doc/security/vulnerabilities.rst
+++ b/doc/security/vulnerabilities.rst
@@ -1368,6 +1368,28 @@ Potential buffer overflow vulnerabilities in the Zephyr Mgmt subsystem
 
 - This issue has not been fixed.
 
+CVE-2023-4264
+-------------
+
+Potential buffer overflow vulnerabilities in the Zephyr Bluetooth subsystem
+
+- `Zephyr project bug tracker GHSA-rgx6-3w4j-gf5j
+  <https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-rgx6-3w4j-gf5j>`_
+
+This has been fixed in main for v3.5.0
+
+- `PR 58834 fix for main
+  <https://github.com/zephyrproject-rtos/zephyr/pull/58834>`_
+
+- `PR 60465 fix for main
+  <https://github.com/zephyrproject-rtos/zephyr/pull/60465>`_
+
+- `PR 61845 fix for main
+  <https://github.com/zephyrproject-rtos/zephyr/pull/61845>`_
+
+- `PR 61385 fix for 3.4
+  <https://github.com/zephyrproject-rtos/zephyr/pull/61385>`_
+
 CVE-2023-4265
 -------------