It was discovered that an information disclosure vulnerability existed in the Service Discovery Protocol (SDP) implementation in BlueZ. A physically proximate unauthenticated attacker could use this to disclose sensitive information. (CVE-2017-1000250)
{ "availability": "No subscription required", "binaries": [ { "bluez-audio": "4.101-0ubuntu13.3", "libbluetooth3": "4.101-0ubuntu13.3", "bluez-compat-dbgsym": "4.101-0ubuntu13.3", "bluez-alsa-dbgsym": "4.101-0ubuntu13.3", "bluez-dbgsym": "4.101-0ubuntu13.3", "bluez-gstreamer": "4.101-0ubuntu13.3", "bluez-alsa": "4.101-0ubuntu13.3", "bluez-cups-dbgsym": "4.101-0ubuntu13.3", "bluez-utils": "4.101-0ubuntu13.3", "bluez-dbg": "4.101-0ubuntu13.3", "bluez-compat": "4.101-0ubuntu13.3", "bluez-gstreamer-dbgsym": "4.101-0ubuntu13.3", "libbluetooth-dev": "4.101-0ubuntu13.3", "bluetooth": "4.101-0ubuntu13.3", "libbluetooth3-dbgsym": "4.101-0ubuntu13.3", "bluez-pcmcia-support": "4.101-0ubuntu13.3", "bluez-cups": "4.101-0ubuntu13.3", "libbluetooth3-dbg": "4.101-0ubuntu13.3", "bluez": "4.101-0ubuntu13.3" } ] }
{ "availability": "No subscription required", "binaries": [ { "libbluetooth3": "5.37-0ubuntu5.1", "bluez-dbgsym": "5.37-0ubuntu5.1", "bluez-hcidump": "5.37-0ubuntu5.1", "bluez-hcidump-dbgsym": "5.37-0ubuntu5.1", "bluez-obexd-dbgsym": "5.37-0ubuntu5.1", "bluez-cups-dbgsym": "5.37-0ubuntu5.1", "bluez-dbg": "5.37-0ubuntu5.1", "libbluetooth-dev": "5.37-0ubuntu5.1", "bluetooth": "5.37-0ubuntu5.1", "libbluetooth3-dbgsym": "5.37-0ubuntu5.1", "bluez-tests-dbgsym": "5.37-0ubuntu5.1", "bluez-cups": "5.37-0ubuntu5.1", "bluez-tests": "5.37-0ubuntu5.1", "libbluetooth-dev-dbgsym": "5.37-0ubuntu5.1", "libbluetooth3-dbg": "5.37-0ubuntu5.1", "bluez": "5.37-0ubuntu5.1", "bluez-obexd": "5.37-0ubuntu5.1" } ] }