BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c.
{ "binaries": [ { "binary_name": "bluetooth", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez-cups", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez-dbg", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez-hcidump", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez-obexd", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "bluez-tests", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "libbluetooth-dev", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "libbluetooth3", "binary_version": "5.48-0ubuntu3.9" }, { "binary_name": "libbluetooth3-dbg", "binary_version": "5.48-0ubuntu3.9" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "bluetooth", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez-cups", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez-dbg", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez-hcidump", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez-obexd", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "bluez-tests", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "libbluetooth-dev", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "libbluetooth3", "binary_version": "5.53-0ubuntu3.6" }, { "binary_name": "libbluetooth3-dbg", "binary_version": "5.53-0ubuntu3.6" } ], "availability": "No subscription required" }