Bugzilla – Bug 1013716
VUL-0: CVE-2016-9799: bluez: buffer overflow in pklg_read_hci()
Last modified: 2016-12-06 10:01:58 UTC
In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" function in
"btsnoop.c" source file. This issue can be triggered by processing a corrupted
dump file and will result in btmon crash.
The reported bug does not apply to older versions of bluez. None of our codestreams contains the affected function "pklg_read_hci".