45 matches found
The vulnerability of the hidp_process_report function in the Bluetooth component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the hidpprocessreport function in the Bluetooth component of the Linux kernel’s core code is due to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informati...
BlueZ buffer overflow vulnerability (CNVD-2016-11951)
BlueZ is an official Bluetooth stack for Linux. A buffer overflow vulnerability exists in the 'setextctrl' function in the tools/parser/l2cap.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability by running a compromised dump file to cause a denial of service...
The vulnerability of the Linux operating system allows a malicious individual to gain access to confidential information from the kernel’s memory.
The vulnerability exists in the Bluetooth subsystem of the Linux kernel due to incorrect initialization of data structures. Exploiting this vulnerability allows local users to access confidential information from the kernel’s memory, using a specially crafted system call called getsockopt. This...
bluez-utils: Bluetooth device name validation vulnerability
Background bluez-utils are the utilities for use with the BlueZ implementation of the Bluetooth wireless standards for Linux. Description The name of a Bluetooth device is improperly validated by the hcid utility when a remote device attempts to pair itself with a computer. Impact An attacker cou...
security flaw
The bluezsockcreate function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via 1 socket or 2 socketpair call with a negative protocol value...