0.001 Low
EPSS
Percentile
30.1%
BlueZ is vulnerable to denial of service. The vulnerability exists because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c which allows an attacker to cause an application crash.
profiles/audio/avdtp.c
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2022-39177
bugs.launchpad.net/ubuntu/+source/bluez/+bug/1977968
lists.debian.org/debian-lts-announce/2022/10/msg00026.html
security.netapp.com/advisory/ntap-20221020-0002/
ubuntu.com/security/notices/USN-5481-1