BlueZ Key Theft / bluetoothd Double-Free

April 24, 2022

Authored by Jann Horn, Google Security Research

BlueZ suffers from a vulnerability where a malicious USB device can steal Bluetooth link keys over HCI using a fake BD_ADDR. It was also discovered that bluetoothd suffers from a double-free memory corruption flaw.

Loading…

Here are the results for the search: "{{td_search_query}}"

No results!

{{post_title}}

RELATED ARTICLES

Chyrp 2.5.2 Cross Site Scripting

Apache mod_proxy_cluster Cross Site Scripting

Backdoor.Win32.AsyncRat MVID-2024-0683 Code Execution