Information on source package bluez

Available versions

ReleaseVersion
wheezy4.99-2
wheezy (security)4.99-2+deb7u1
jessie5.23-2
jessie (security)5.23-2+deb8u1
stretch5.43-2
stretch (security)5.43-2+deb9u1
buster5.46-1
sid5.47-1

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2016-9918vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" ...
CVE-2016-9917vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer overflow was observed in "read_n" function in ...
CVE-2016-9804vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer overflow was observed in "commands_dump" ...
CVE-2016-9803vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" ...
CVE-2016-9802vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" ...
CVE-2016-9801vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" ...
CVE-2016-9800vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" ...
CVE-2016-9799vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" ...
CVE-2016-9798vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a use-after-free was identified in "conf_opt" function ...
CVE-2016-9797vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function ...
CVE-2016-7837vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedBuffer overflow in BlueZ 5.41 and earlier allows an attacker to ...

Resolved issues

BugDescription
CVE-2017-1000250All versions of the SDP server in BlueZ 5.46 and earlier are ...

Security announcements

DSA / DLADescription
DLA-1103-1bluez - security update
DSA-3972-1bluez - security update
DSA-3972-1bluez - security update

Search for package or bug name: Reporting problems