The vulnerability of the database.c component of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to access confidential information.

The vulnerability of the database.c component of the Bluetooth protocol stack for the Linux BlueZ operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to gain access to confidential information...

CVE-2021-41229

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdpcstateallocbuf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object...

The vulnerability of the gatttool disconnect_cb() subroutine in the shared/att.c component of the Bluetooth technology stack for Linux BlueZ allows a intruder to access confidential data, compromise its integrity, and cause a service failure.

The vulnerability of the gatttool disconnectcb subroutine in the shared/att.c component of the Bluetooth technology stack for Linux BlueZ is related to the repeated release of a memory area due to an excessive disconnection event from MGMT. Exploiting this vulnerability allows an attacker to gain...

bluez-utils: Bluetooth device name validation vulnerability

Background bluez-utils are the utilities for use with the BlueZ implementation of the Bluetooth wireless standards for Linux. Description The name of a Bluetooth device is improperly validated by the hcid utility when a remote device attempts to pair itself with a computer. Impact An attacker cou...