CVE-2017-1000250

All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
Affected Products (NVD)
VendorProductVersion
bluezbluez
𝑥
≤ 5.46
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bluez
bookworm
5.66-1+deb12u2
fixed
bookworm (security)
5.66-1+deb12u1
fixed
bullseye
5.55-3.1+deb11u1
fixed
bullseye (security)
5.55-3.1+deb11u2
fixed
sid
5.77-1
fixed
trixie
5.77-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bluez
trusty
Fixed 4.101-0ubuntu13.3
released
xenial
Fixed 5.37-0ubuntu5.1
released
zesty
Fixed 5.43-0ubuntu1.1
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
bluez
suse enterprise sap 12 SP3
5.13-5.4.1
fixed
suse enterprise sap 12 SP5
5.13-5.12.1
fixed
suse enterprise server 12
5.13-3.10.1
fixed
suse enterprise server 12 SP1
5.13-3.10.1
fixed
suse enterprise server 12 SP3
5.13-5.4.1
fixed
suse enterprise server 12 SP4
5.13-5.4.1
fixed
suse enterprise server 12 SP5
5.13-5.12.1
fixed
libbluetooth3
suse enterprise sap 12 SP3
5.13-5.4.1
fixed
suse enterprise sap 12 SP5
5.13-5.12.1
fixed
suse enterprise server 12
5.13-3.10.1
fixed
suse enterprise server 12 SP1
5.13-3.10.1
fixed
suse enterprise server 12 SP3
5.13-5.4.1
fixed
suse enterprise server 12 SP4
5.13-5.4.1
fixed
suse enterprise server 12 SP5
5.13-5.12.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
bluez
RHEL 6
0:4.66-2.el6_9
fixed
RHEL 7
0:5.44-4.el7_4
fixed
bluez-alsa
RHEL 6
0:4.66-2.el6_9
fixed
bluez-compat
RHEL 6
0:4.66-2.el6_9
fixed
bluez-cups
RHEL 6
0:4.66-2.el6_9
fixed
RHEL 7
0:5.44-4.el7_4
fixed
bluez-gstreamer
RHEL 6
0:4.66-2.el6_9
fixed
bluez-hid2hci
RHEL 7
0:5.44-4.el7_4
fixed
bluez-libs
RHEL 6
0:4.66-2.el6_9
fixed
RHEL 7
0:5.44-4.el7_4
fixed
bluez-libs-devel
RHEL 6
0:4.66-2.el6_9
fixed
RHEL 7
0:5.44-4.el7_4
fixed
Common Weakness Enumeration
References
http://nvidia.custhelp.com/app/answers/detail/a_id/4561
http://www.debian.org/security/2017/dsa-3972
http://www.securityfocus.com/bid/100814
https://access.redhat.com/errata/RHSA-2017:2685
https://access.redhat.com/security/vulnerabilities/blueborne
https://www.armis.com/blueborne
https://www.kb.cert.org/vuls/id/240311
https://www.synology.com/support/security/Synology_SA_17_52_BlueBorne
https://access.redhat.com/security/cve/CVE-2017-1000250
http://nvidia.custhelp.com/app/answers/detail/a_id/4561
http://www.debian.org/security/2017/dsa-3972
http://www.securityfocus.com/bid/100814
https://access.redhat.com/errata/RHSA-2017:2685
https://access.redhat.com/security/vulnerabilities/blueborne
https://www.armis.com/blueborne
https://www.kb.cert.org/vuls/id/240311
https://www.synology.com/support/security/Synology_SA_17_52_BlueBorne