bluez is vulnerable to information disclosure. The vulnerability exists due to the handling of a SVC_ATTR_REQ by the SDP implementation which allows an attacker to inject a malicious CSTATE, tricking the server into returning more bytes than the buffer actually holds, resulting in leaking arbitrary heap data.