BlueZ prior to 5.59 allows physically proximate malicious users to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bluez bluez |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 20.04 |
||
debian debian linux 10.0 |