Bluez Security Vulnerabilities and Issues — Bluez CVE List

Lucene search

BluezBluez

9 matches found

CVE•added 2016/12/03 6:59 a.m.•154 views

CVE-2016-9798

In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

5.3CVSS6AI score0.00487EPSS

CVE•added 2016/12/03 6:59 a.m.•149 views

CVE-2016-9802

In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.

5.3CVSS6.1AI score0.00476EPSS

CVE•added 2016/12/08 8:59 a.m.•139 views

CVE-2016-9917

In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

7.5CVSS7.6AI score0.00454EPSS

CVE•added 2016/12/03 6:59 a.m.•128 views

CVE-2016-9797

In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

5.3CVSS6.1AI score0.00363EPSS

CVE•added 2016/12/03 6:59 a.m.•66 views

CVE-2016-9800

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.

5.3CVSS6.2AI score0.00384EPSS

CVE•added 2016/12/03 6:59 a.m.•66 views

CVE-2016-9801

In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" function in "tools/parser/l2cap.c" source file when processing corrupted dump file.

5.3CVSS6.2AI score0.00387EPSS

CVE•added 2016/12/03 6:59 a.m.•63 views

CVE-2016-9804

In BlueZ 5.42, a buffer overflow was observed in "commands_dump" function in "tools/parser/csr.c" source file. The issue exists because "commands" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "frm->ptr" parameter. This issue can be tri...

5.3CVSS6.2AI score0.0036EPSS

CVE•added 2016/12/03 6:59 a.m.•47 views

CVE-2016-9803

In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" function in "tools/parser/hci.c" source file. This issue exists because 'subevent' (which is used to read correct element from 'ev_le_meta_str' array) is overflowed.

5.3CVSS5.2AI score0.00146EPSS

CVE•added 2016/12/03 6:59 a.m.•37 views

CVE-2016-9799

In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" function in "btsnoop.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.

5.3CVSS5.7AI score0.00476EPSS