CVE-2021-3658

The CVE-2021-3658 entry concerns bluez’s bluetoothd: a bug in saving/restoring the Discoverable flag causes a device that was Discoverable when powered down to remain Discoverable when powered back on. Affected component: bluez (bluetoothd). Root cause: incorrect handling of the adapter Discovera...

CVE-2021-3658

bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to...

EulerOS 2.0 SP10 : bluez (EulerOS-SA-2022-1219)

According to the versions of the bluez package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device ...

Mageia: Security Advisory (MGASA-2017-0345)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Bluez buffer overflow vulnerability (CNVD-2021-95605)

BlueZ is a Bluetooth protocol stack written in C. It is primarily used to provide support for the core Bluetooth layers and protocols. A security vulnerability exists in Bluetoothd in BlueZ version 5.48 and earlier, which stems from a program receiving data without any size checking, and which ca...

ASB-A-197868577

In osimalloc and osicalloc of allocator.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

DEBIAN-CVE-2019-8922

A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data passed to it. The values of all attributes that are requested are appended to the output buffer...

The vulnerability of the Bluetooth protocol stack for the Linux BlueZ operating system, related to improper authentication, allows a hacker to gain access to confidential data.

The vulnerability of the Bluetooth protocol stack for the Linux BlueZ operating system is related to improper authentication. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

SUSE-SU-2021:3207-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks bsc1190115. - CVE-2021-38160: Data corruption or...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3205-1 Rating: important References: 1040364 1127650 1135481 1152489 1160010 1168202 1171420 1174969 1175052 1175543 1177399 1180100 1180141 1180347 1181006 1181148 1181972 1184180 1185902 1186264...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3179-1 Rating: important References: 1040364 1127650 1135481 1152489 1160010 1168202 1171420 1174969 1175052 1175543 1177399 1180100 1180141 1180347 1181006 1181148 1181972 1184180 1185902 1186264...

Texas Instruments Ble Stack 安全漏洞

Texas Instruments Ble Stack is a low-power Bluetooth software stack from Texas Instruments, USA. A security vulnerability exists in Texas Instruments Ble Stack. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor's announcement...

DEBIAN-CVE-2021-34145

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot with an invalid Baseband packet type and LTADDRESS and LTADDR after completion of the LMP setup procedure, allowing attackers in radio range...

Espressif ESP-IDF 安全漏洞

Espressif ESP-IDF is an Internet of Things IoT development framework from China's Lexin Information Technology Espressif. Espressif ESP-IDF suffers from a security vulnerability that stems from a security issue in the commercial BT stack. The vulnerability can be exploited by an attacker to cause...

BrakTooth 输入验证错误漏洞

BrakTooth is a family of 20 vulnerabilities affecting over 1,400 products based on 13 different Bluetooth devices sold by 11 of the world's leading vendors. An input validation error vulnerability exists in the BrakTooth Business Bluetooth Stack BT, which could lead to a DoS and arbitrary code...

kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan

A use-after-free flaw was found in hcisendacl in the bluetooth host controller interface HCI in Linux kernel, where a local attacker with an access rights could cause a denial of service problem on the system The issue results from the object hchan, freed in hcidisconnloglinkcompleteevt, yet stil...

The vulnerability of the Bluetooth stack implementation in the Red Hat Enterprise Linux kernel allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Bluetooth stack implementation in the Red Hat Enterprise Linux kernel is related to access to data without type checking. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code...

Binary vulnerability in Bluetooth stack

Bluetooth stack is a protocol stack that contains traditional Bluetooth and low power Bluetooth, belongs to the ultra-lightweight Bluetooth stack, used for people who want to learn Bluetooth protocol stack. A binary vulnerability exists in the Bluetooth stack, which can be exploited by attackers ...

SUSE: Security Advisory (SUSE-SU-2017:2774-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2778-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...