Search CVE reports

Toggle filters

21 – 30 of 57 results

CVE-2019-8921

Medium priority
Fixed

An issue was discovered in bluetoothd in BlueZ through 5.48. The vulnerability lies in the handling of a SVC_ATTR_REQ by the SDP implementation. By crafting a malicious CSTATE, it is possible to trick the server into returning...

1 affected package

bluez

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez Not affected Not affected Not affected Fixed
Show less packages

CVE-2021-41229

Low priority

Some fixes available 12 of 13

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This...

1 affected package

bluez

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez Fixed Fixed Fixed Fixed
Show less packages

CVE-2021-43400

Medium priority

Some fixes available 4 of 5

An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call.

1 affected package

bluez

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez Not affected Not affected Fixed Fixed
Show less packages

CVE-2021-34148

Medium priority
Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after completion of the LMP setup procedure,...

1 affected package

bluez-firmware

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez-firmware Not affected Vulnerable Not in release Not in release
Show less packages

CVE-2021-34147

Medium priority
Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing accuracy response followed by multiple reconnections to the...

1 affected package

bluez-firmware

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez-firmware Not affected Vulnerable Not in release Not in release
Show less packages

CVE-2021-34146

Medium priority
Vulnerable

The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart...

1 affected package

bluez-firmware

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez-firmware Not affected Vulnerable Not in release Not in release
Show less packages

CVE-2021-34145

Medium priority
Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type (and LT_ADDRESS and LT_ADDR) after...

1 affected package

bluez-firmware

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez-firmware Not affected Vulnerable Not in release Not in release
Show less packages

CVE-2021-3658

Low priority
Fixed

bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again....

1 affected package

bluez

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez Not affected Fixed Not affected
Show less packages

CVE-2021-31615

Medium priority
Ignored

Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting...

168 affected packages

linux-aws-5.0, linux-aws-5.11, linux-aws-5.13, linux-aws-5.15, linux-aws-5.3...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-aws-5.0 Not in release Not in release Not in release Ignored
linux-aws-5.11 Not in release Not in release Ignored Not in release
linux-aws-5.13 Not in release Not in release Ignored Not in release
linux-aws-5.15 Not in release Not in release Ignored Not in release
linux-aws-5.3 Not in release Not in release Not in release Ignored
linux-aws-5.4 Not in release Not in release Not in release Ignored
linux-aws-5.8 Not in release Not in release Ignored Not in release
linux-aws-hwe Not in release Not in release Not in release Not in release
linux-azure-4.15 Not in release Not in release Not in release Ignored
linux-azure-5.11 Not in release Not in release Ignored Not in release
linux-azure-5.13 Not in release Not in release Ignored Not in release
linux-azure-5.15 Not in release Not in release Ignored Not in release
linux-azure-5.19 Not in release Ignored Not in release Not in release
linux-azure-5.3 Not in release Not in release Not in release Ignored
linux-azure-5.4 Not in release Not in release Not in release Ignored
linux-azure-5.8 Not in release Not in release Ignored Not in release
linux-azure-edge Not in release Not in release Not in release Ignored
linux-azure-fde Ignored Ignored Ignored Not in release
linux-azure-fde-5.15 Not in release Not in release Ignored Not in release
linux-bluefield Not in release Not in release Ignored Not in release
linux-dell300x Not in release Not in release Not in release Ignored
linux-gcp Ignored Ignored Ignored Ignored
linux-gcp-4.15 Not in release Not in release Not in release Ignored
linux-azure Ignored Ignored Ignored Ignored
linux-gcp-5.11 Not in release Not in release Ignored Not in release
linux-gcp-5.13 Not in release Not in release Ignored Not in release
linux-gcp-5.15 Not in release Not in release Ignored Not in release
linux-gcp-5.3 Not in release Not in release Not in release Ignored
linux-gcp-5.4 Not in release Not in release Not in release Ignored
linux-gcp-5.8 Not in release Not in release Ignored Not in release
linux-gcp-edge Not in release Not in release Not in release Ignored
linux-gke Ignored Ignored Ignored Not in release
linux-gke-4.15 Not in release Not in release Not in release Ignored
linux-gke-5.0 Not in release Not in release Not in release Ignored
linux-gke-5.15 Not in release Not in release Ignored Not in release
linux-gke-5.3 Not in release Not in release Not in release Ignored
linux-gke-5.4 Not in release Not in release Not in release Ignored
linux-gkeop Ignored Ignored Ignored Not in release
linux-gkeop-5.4 Not in release Not in release Not in release Ignored
linux-hwe Not in release Not in release Not in release Ignored
linux-hwe-5.11 Not in release Not in release Ignored Not in release
linux-hwe-5.13 Not in release Not in release Ignored Not in release
linux-hwe-5.15 Not in release Not in release Ignored Not in release
linux-hwe-5.19 Not in release Ignored Not in release Not in release
linux-hwe-5.4 Not in release Not in release Not in release Ignored
linux-hwe-5.8 Not in release Not in release Ignored Not in release
linux-hwe-edge Not in release Not in release Not in release Ignored
linux-ibm Ignored Ignored Ignored Not in release
linux-ibm-5.4 Not in release Not in release Not in release Ignored
linux-intel-5.13 Not in release Not in release Ignored Not in release
linux-intel-iotg Not in release Ignored Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Ignored Not in release
linux-lowlatency Ignored Ignored Not in release Not in release
linux-kvm Not in release Ignored Ignored Ignored
linux-lowlatency-hwe-5.15 Not in release Not in release Ignored Not in release
linux-lowlatency-hwe-5.19 Not in release Ignored Not in release Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-oem Not in release Not in release Not in release Ignored
linux-oem-5.10 Not in release Not in release Ignored Not in release
linux-oem-5.14 Not in release Not in release Ignored Not in release
linux-oem-5.17 Not in release Ignored Not in release Not in release
linux-oem-5.6 Not in release Not in release Ignored Not in release
linux-oem-6.0 Not in release Ignored Not in release Not in release
linux-oem-6.1 Not in release Ignored Not in release Not in release
linux-oem-osp1 Not in release Not in release Not in release Ignored
linux-oracle Ignored Ignored Ignored Ignored
linux-oracle-5.0 Not in release Not in release Not in release Ignored
linux-oracle-5.11 Not in release Not in release Ignored Not in release
linux-oracle-5.13 Not in release Not in release Ignored Not in release
linux-oracle-5.15 Not in release Not in release Ignored Not in release
linux-oracle-5.3 Not in release Not in release Not in release Ignored
linux-oracle-5.4 Not in release Not in release Not in release Ignored
linux-oracle-5.8 Not in release Not in release Ignored Not in release
linux-raspi Ignored Ignored Ignored Not in release
linux-raspi-5.4 Not in release Not in release Not in release Ignored
linux-raspi2 Not in release Not in release Ignored Ignored
linux-raspi2-5.3 Not in release Not in release Not in release Ignored
linux-riscv Ignored Ignored Ignored Not in release
linux-riscv-5.11 Not in release Not in release Ignored Not in release
linux-riscv-5.8 Not in release Not in release Ignored Not in release
linux-snapdragon Not in release Not in release Not in release Ignored
linux Ignored Ignored Ignored Ignored
linux-aws Ignored Ignored Ignored Ignored
linux-nvidia Ignored Ignored Not in release Not in release
linux-gkeop-5.15 Not in release Not in release Ignored Not in release
linux-aws-5.19 Not in release Ignored Not in release Not in release
linux-gcp-5.19 Not in release Ignored Not in release Not in release
linux-riscv-5.19 Not in release Ignored Not in release Not in release
linux-allwinner Not in release Not in release Not in release Not in release
linux-allwinner-5.19 Not in release Ignored Not in release Not in release
linux-starfive Not in release Not in release Not in release Not in release
linux-starfive-5.19 Not in release Ignored Not in release Not in release
linux-aws-6.2 Not in release Ignored Not in release Not in release
linux-hwe-6.2 Not in release Ignored Not in release Not in release
linux-lowlatency-hwe-6.2 Not in release Ignored Not in release Not in release
linux-ibm-5.15 Not in release Not in release Ignored Not in release
linux-gcp-6.2 Not in release Ignored Not in release Not in release
linux-azure-6.2 Not in release Ignored Not in release Not in release
linux-azure-fde-6.2 Not in release Ignored Not in release Not in release
linux-iot Not in release Not in release Ignored Not in release
linux-azure-fde-5.19 Not in release Ignored Not in release Not in release
linux-riscv-5.15 Not in release Not in release Ignored Not in release
linux-xilinx-zynqmp Not in release Ignored Ignored Not in release
linux-nvidia-6.2 Not in release Ignored Not in release Not in release
linux-starfive-6.2 Not in release Ignored Not in release Not in release
linux-laptop Not in release Not in release Not in release Not in release
linux-oem-6.5 Not in release Ignored Not in release Not in release
linux-hwe-6.5 Not in release Ignored Not in release Not in release
linux-lowlatency-hwe-6.5 Not in release Ignored Not in release Not in release
linux-riscv-6.5 Not in release Ignored Not in release Not in release
linux-starfive-6.5 Not in release Ignored Not in release Not in release
linux-aws-6.5 Not in release Ignored Not in release Not in release
linux-azure-6.5 Not in release Ignored Not in release Not in release
linux-gcp-6.5 Not in release Ignored Not in release Not in release
linux-oracle-6.5 Not in release Ignored Not in release Not in release
linux-nvidia-6.5 Not in release Ignored Not in release Not in release
linux-aws-fips Ignored Ignored Ignored Ignored
linux-azure-fips Ignored Ignored Ignored Ignored
linux-gcp-fips Ignored Ignored Ignored Ignored
linux-oem-6.8 Ignored Not in release Not in release Not in release
linux-aws-6.8 Not in release Ignored Not in release Not in release
linux-azure-6.8 Not in release Ignored Not in release Not in release
linux-azure-nvidia Ignored Not in release Not in release Not in release
linux-azure-nvidia-6.14 Ignored Not in release Not in release Not in release
linux-intel Ignored Not in release Not in release Not in release
linux-gcp-6.11 Ignored Not in release Not in release Not in release
linux-gcp-6.8 Not in release Ignored Not in release Not in release
linux-hwe-6.11 Ignored Not in release Not in release Not in release
linux-hwe-6.14 Ignored Not in release Not in release Not in release
linux-ibm-6.8 Not in release Ignored Not in release Not in release
linux-lowlatency-hwe-6.11 Ignored Not in release Not in release Not in release
linux-nvidia-6.11 Ignored Not in release Not in release Not in release
linux-nvidia-tegra Ignored Ignored Not in release Not in release
linux-nvidia-tegra-5.15 Not in release Not in release Ignored Not in release
linux-nvidia-tegra-igx Not in release Ignored Not in release Not in release
linux-oem-6.11 Ignored Not in release Not in release Not in release
linux-oracle-6.14 Ignored Not in release Not in release Not in release
linux-oracle-6.17 Ignored Not in release Not in release Not in release
linux-oracle-6.8 Not in release Ignored Not in release Not in release
linux-realtime Ignored Ignored Not in release Not in release
linux-realtime-6.8 Not in release Ignored Not in release Not in release
linux-riscv-6.14 Ignored Not in release Not in release Not in release
bluez Ignored Ignored Ignored Ignored
linux-nvidia-6.8 Not in release Ignored Not in release Not in release
linux-nvidia-lowlatency Ignored Not in release Not in release Not in release
linux-hwe-6.8 Not in release Ignored Not in release Not in release
linux-lowlatency-hwe-6.8 Not in release Ignored Not in release Not in release
linux-riscv-6.8 Not in release Ignored Not in release Not in release
linux-fips Ignored Ignored Ignored Ignored
linux-intel-iot-realtime Not in release Ignored Not in release Not in release
linux-raspi-realtime Ignored Not in release Not in release Not in release
linux-azure-6.11 Ignored Not in release Not in release Not in release
linux-oem-6.14 Ignored Not in release Not in release Not in release
linux-aws-6.14 Ignored Not in release Not in release Not in release
linux-gcp-6.14 Ignored Not in release Not in release Not in release
linux-realtime-6.14 Ignored Not in release Not in release Not in release
linux-azure-6.14 Ignored Not in release Not in release Not in release
linux-azure-fde-6.14 Ignored Not in release Not in release Not in release
linux-xilinx Ignored Not in release Not in release Not in release
linux-oem-6.17 Ignored Not in release Not in release Not in release
linux-azure-fde-6.8 Not in release Ignored Not in release Not in release
linux-aws-6.17 Ignored Not in release Not in release Not in release
linux-gcp-6.17 Ignored Not in release Not in release Not in release
linux-hwe-6.17 Ignored Not in release Not in release Not in release
linux-riscv-6.17 Ignored Not in release Not in release Not in release
linux-azure-6.17 Ignored Not in release Not in release Not in release
linux-azure-fde-6.17 Ignored Not in release Not in release Not in release
linux-realtime-6.17 Ignored Not in release Not in release Not in release
Show all 168 packages Show less packages

CVE-2021-3588

Medium priority
Fixed

The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading.

1 affected package

bluez

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bluez Not affected Fixed Not affected
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON