bluez-firmware is vulnerable to denial of service (DoS) attacks. The library does not properly handle the reception of continuous unsolicited LMP responses, allowing an attacker in radio range to trigger a denial of service and restart the device by flooding it with LMP_AU_Rand
packets after the paging procedure.
CPE | Name | Operator | Version |
---|---|---|---|
bluez-firmware:sid | eq | 1.2-4 | |
bluez-firmware:sid | eq | 1.2-4 |