In BlueZ prior to 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bluez bluez |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
opensuse leap 15.1 |
||
opensuse leap 15.2 |