Search CVE reports

21 – 30 of 60 results

Detailed view

Sort by:

CVE-2019-8922

Medium priority

Fixed

A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data passed to it. The values of...

1 affected package

bluez

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez	—	Not affected	Not affected	Not affected	Fixed

CVE-2019-8921

Medium priority

Fixed

An issue was discovered in bluetoothd in BlueZ through 5.48. The vulnerability lies in the handling of a SVC_ATTR_REQ by the SDP implementation. By crafting a malicious CSTATE, it is possible to trick the server into returning...

1 affected package

bluez

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez	—	Not affected	Not affected	Not affected	Fixed

CVE-2021-41229

Low priority

Some fixes available 13 of 14

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This...

1 affected package

bluez

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez	Fixed	Fixed	Fixed	Fixed	Fixed

CVE-2021-43400

Medium priority

Some fixes available 4 of 5

An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call.

1 affected package

bluez

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez	Not affected	Not affected	Not affected	Fixed	Fixed

CVE-2021-34148

Medium priority

Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after completion of the LMP setup procedure,...

1 affected package

bluez-firmware

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez-firmware	Not affected	Not affected	Vulnerable	Not in release	Not in release

CVE-2021-34147

Medium priority

Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing accuracy response followed by multiple reconnections to the...

1 affected package

bluez-firmware

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez-firmware	Not affected	Not affected	Vulnerable	Not in release	Not in release

CVE-2021-34146

Medium priority

Vulnerable

The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart...

1 affected package

bluez-firmware

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez-firmware	Not affected	Not affected	Vulnerable	Not in release	Not in release

CVE-2021-34145

Medium priority

Vulnerable

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type (and LT_ADDRESS and LT_ADDR) after...

1 affected package

bluez-firmware

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez-firmware	Not affected	Not affected	Vulnerable	Not in release	Not in release

CVE-2021-3658

Low priority

Fixed

bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again....

1 affected package

bluez

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bluez	—	—	Not affected	Fixed	Not affected

CVE-2021-31615

Medium priority

Ignored

Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting...

168 affected packages

linux-aws-5.0, linux-aws-5.11, linux-aws-5.13, linux-aws-5.15, linux-aws-5.3...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux-aws-5.0	—	Not in release	Not in release	Not in release	Ignored
linux-aws-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-aws-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-aws-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-aws-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-aws-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-aws-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-aws-hwe	—	Not in release	Not in release	Not in release	Not in release
linux-azure-4.15	—	Not in release	Not in release	Not in release	Ignored
linux-azure-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-azure-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-azure-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-azure-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-azure-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-azure-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-azure-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-azure-edge	—	Not in release	Not in release	Not in release	Ignored
linux-azure-fde	—	Ignored	Ignored	Ignored	Not in release
linux-azure-fde-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-bluefield	—	Not in release	Not in release	Ignored	Not in release
linux-dell300x	—	Not in release	Not in release	Not in release	Ignored
linux-gcp	—	Ignored	Ignored	Ignored	Ignored
linux-gcp-4.15	—	Not in release	Not in release	Not in release	Ignored
linux-azure	—	Ignored	Ignored	Ignored	Ignored
linux-gcp-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-gcp-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-gcp-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-gcp-edge	—	Not in release	Not in release	Not in release	Ignored
linux-gke	—	Ignored	Ignored	Ignored	Not in release
linux-gke-4.15	—	Not in release	Not in release	Not in release	Ignored
linux-gke-5.0	—	Not in release	Not in release	Not in release	Ignored
linux-gke-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-gke-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-gke-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-gkeop	—	Ignored	Ignored	Ignored	Not in release
linux-gkeop-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-hwe	—	Not in release	Not in release	Not in release	Ignored
linux-hwe-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-hwe-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-hwe-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-hwe-edge	—	Not in release	Not in release	Not in release	Ignored
linux-ibm	—	Ignored	Ignored	Ignored	Not in release
linux-ibm-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-intel-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-intel-iotg	—	Not in release	Ignored	Not in release	Not in release
linux-intel-iotg-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-lowlatency	—	Ignored	Ignored	Not in release	Not in release
linux-kvm	—	Not in release	Ignored	Ignored	Ignored
linux-lowlatency-hwe-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-lowlatency-hwe-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-lts-xenial	—	Not in release	Not in release	Not in release	Not in release
linux-oem	—	Not in release	Not in release	Not in release	Ignored
linux-oem-5.10	—	Not in release	Not in release	Ignored	Not in release
linux-oem-5.14	—	Not in release	Not in release	Ignored	Not in release
linux-oem-5.17	—	Not in release	Ignored	Not in release	Not in release
linux-oem-5.6	—	Not in release	Not in release	Ignored	Not in release
linux-oem-6.0	—	Not in release	Ignored	Not in release	Not in release
linux-oem-6.1	—	Not in release	Ignored	Not in release	Not in release
linux-oem-osp1	—	Not in release	Not in release	Not in release	Ignored
linux-oracle	—	Ignored	Ignored	Ignored	Ignored
linux-oracle-5.0	—	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.13	—	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-raspi	—	Ignored	Ignored	Ignored	Not in release
linux-raspi-5.4	—	Not in release	Not in release	Not in release	Ignored
linux-raspi2	—	Not in release	Not in release	Ignored	Ignored
linux-raspi2-5.3	—	Not in release	Not in release	Not in release	Ignored
linux-riscv	—	Ignored	Ignored	Ignored	Not in release
linux-riscv-5.11	—	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.8	—	Not in release	Not in release	Ignored	Not in release
linux-snapdragon	—	Not in release	Not in release	Not in release	Ignored
linux	—	Ignored	Ignored	Ignored	Ignored
linux-aws	—	Ignored	Ignored	Ignored	Ignored
linux-nvidia	—	Ignored	Ignored	Not in release	Not in release
linux-gkeop-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-aws-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-gcp-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-riscv-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-allwinner	—	Not in release	Not in release	Not in release	Not in release
linux-allwinner-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-starfive	—	Not in release	Not in release	Not in release	Not in release
linux-starfive-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-aws-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-ibm-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-gcp-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-azure-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-iot	—	Not in release	Not in release	Ignored	Not in release
linux-azure-fde-5.19	—	Not in release	Ignored	Not in release	Not in release
linux-riscv-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-xilinx-zynqmp	—	Not in release	Ignored	Ignored	Not in release
linux-nvidia-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.2	—	Not in release	Ignored	Not in release	Not in release
linux-laptop	—	Not in release	Not in release	Not in release	Not in release
linux-oem-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-aws-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-azure-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-oracle-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.5	—	Not in release	Ignored	Not in release	Not in release
linux-aws-fips	—	Ignored	Ignored	Ignored	Ignored
linux-azure-fips	—	Ignored	Ignored	Ignored	Ignored
linux-gcp-fips	—	Ignored	Ignored	Ignored	Ignored
linux-oem-6.8	—	Ignored	Not in release	Not in release	Not in release
linux-aws-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-azure-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-azure-nvidia	—	Ignored	Not in release	Not in release	Not in release
linux-azure-nvidia-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-intel	—	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-ibm-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-nvidia-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-nvidia-tegra	—	Ignored	Ignored	Not in release	Not in release
linux-nvidia-tegra-5.15	—	Not in release	Not in release	Ignored	Not in release
linux-nvidia-tegra-igx	—	Not in release	Ignored	Not in release	Not in release
linux-oem-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-oracle-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-oracle-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-oracle-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-realtime	—	Ignored	Ignored	Not in release	Not in release
linux-realtime-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.14	—	Ignored	Not in release	Not in release	Not in release
bluez	—	Ignored	Ignored	Ignored	Ignored
linux-nvidia-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-nvidia-lowlatency	—	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-fips	—	Ignored	Ignored	Ignored	Ignored
linux-intel-iot-realtime	—	Not in release	Ignored	Not in release	Not in release
linux-raspi-realtime	—	Ignored	Not in release	Not in release	Not in release
linux-azure-6.11	—	Ignored	Not in release	Not in release	Not in release
linux-oem-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-aws-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-realtime-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-azure-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-azure-fde-6.14	—	Ignored	Not in release	Not in release	Not in release
linux-xilinx	—	Ignored	Not in release	Not in release	Not in release
linux-oem-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-azure-fde-6.8	—	Not in release	Ignored	Not in release	Not in release
linux-aws-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-riscv-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-azure-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-azure-fde-6.17	—	Ignored	Not in release	Not in release	Not in release
linux-realtime-6.17	—	Ignored	Not in release	Not in release	Not in release

Export to JSON

Results by page: