Lucene search

K
redhatcveRedhat.comRH:CVE-2019-8922
HistoryNov 29, 2021 - 5:57 p.m.

CVE-2019-8922

2021-11-2917:57:37
redhat.com
access.redhat.com
20
cve-2019-8922
heap-based buffer overflow
bluetoothd
bluez
missing check
destination buffer
attacker exploit

EPSS

0.001

Percentile

45.0%

A heap-based buffer overflow was discovered in bluetoothd in bluez through version 5.48. A missing check on whether there is enough space in the destination buffer can allow an attacker to exploit the vulnerability by crafting a request where the response is large enough to overflow the preallocated buffer.