bluez

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Daemons for the bluetooth protocol stack
Version 5.78-1 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2553 5.62-1 5.63-1 Medium Fixed
AVG-2231 5.60-1 5.61-1 Low Fixed
AVG-2061 5.55-3 5.56-1 Medium Fixed
AVG-2050 5.56-2 5.57-1 Medium Fixed
AVG-1116 5.53-1 5.54-1 High Fixed
AVG-396 5.46-1 5.46-2 High Fixed FS#55603
Issue Group Severity Remote Type Description
CVE-2021-41229 AVG-2553 Medium Yes Denial of service
In BlueZ, a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not...
CVE-2021-3658 AVG-2231 Low Yes Information disclosure
bluetoothd from bluez before version 5.61 incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If...
CVE-2021-3588 AVG-2061 Medium Yes Information disclosure
A security issue has been found in BlueZ before version 5.56. The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the...
CVE-2020-26558 AVG-2050 Medium Yes Private key recovery
Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the...
CVE-2020-0556 AVG-1116 High Yes Access restriction bypass
It was discovered that the HID and HOGP profiles implementations in bluez before 5.54 don't specifically require bonding between the device and the host....
CVE-2017-1000250 AVG-396 High Yes Information disclosure
An information-disclosure flaw was found in the bluetoothd implementation of the Service Discovery Protocol (SDP). A specially crafted Bluetooth device...

Advisories

Date Advisory Group Severity Type
19 Mar 2020 ASA-202003-13 AVG-1116 High access restriction bypass
12 Sep 2017 ASA-201709-3 AVG-396 High information disclosure