CVE-2023-51592

BlueZ Audio Profile AVRCP parsemediafolder Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability i...

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to execute arbitrary code with root privileges.

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code with root privileges...

The vulnerability of the `read_50_controller_cap_complete` function in the BlueZ component of the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the read50controllercapcomplete function in the BlueZ component of the Linux operating system’s kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

DEBIAN-CVE-2022-39177

BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c...

The vulnerability of the Bluetooth protocol stack for the Linux operating system BlueZ, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Bluetooth protocol stack for the Linux operating system BlueZ is related to insufficient validation of user-input data during the processing of the A2DP profile. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially crafted data...

The vulnerability of the SDP server for Bluetooth protocol implementations allows a hacker to disclose sensitive system information.

The vulnerability of the SDP-server of the BlueZ software package, which implements a Bluetooth protocol stack, stems from the possibility of reading data beyond the memory buffer boundaries. Exploiting this vulnerability allows a malicious actor to read memory bits by using a specially crafted...

UBUNTU-CVE-2017-1000251

The native Bluetooth stack in the Linux Kernel BlueZ, starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space...

UBUNTU-CVE-2016-9918

In BlueZ 5.42, an out-of-bounds read was identified in "packethexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

bluez bluetooth stack memory corruption

Memory corruption on SDP packet parsing...

Linux Kernel 2.4.x2.6.x - Bluez BlueTooth Signed Buffer Index Privilege Escalation (2)

Linux Kernel 2.4.x2.6.x - Bluez BlueTooth Signed Buffer Index Privilege Escalation 2 / Due to many responses i've improved the exploit to cover more systems! ONGBAK v0.9 october 24th 05 """""""""""""""""""""""""""""""""""" o universal "shellcode" added o try to use all possible memory regions o...