Note:
This project will be discontinued after December 13, 2021. [more]
2017-06-09
Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the parse_line function used in some userland utilities.
Products | Bluez |
Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
First patch | - None (likely due to unavailable code) |
Links |
• https://usn.ubuntu.com/4311-1/
• https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=8514068150759c1d6a46d4605d2351babfde1601 • http://www.securityfocus.com/bid/95067 • https://jvn.jp/en/jp/JVN38755305/index.html |