Bug 187945 (CVE-2006-0670) - CVE-2006-0670 bluez-hcidump Denial of Service
Summary: CVE-2006-0670 bluez-hcidump Denial of Service
Alias: CVE-2006-0670
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Depends On:
TreeView+ depends on / blocked
Reported: 2006-04-04 20:01 UTC by Josh Bressers
Modified: 2021-02-25 18:39 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2011-08-02 18:43:06 UTC

Attachments (Terms of Use)

Description Josh Bressers 2006-04-04 20:01:26 UTC
bluez-hcidump Denial of Service


"ubuntu: Pierre Betouin discovered a Denial of Service
vulnerability in the handling of the L2CAP (Logical Link
Control and Adaptation Layer Protocol) layer. By sending a
specially crafted L2CAP packet through a wireless Bluetooth
connection, a remote attacker could crash hcidump.  Since
hcidump is mainly a debugging tool, the impact of this flaw is
very low."

The patch is here:

Comment 1 Mark J. Cox 2007-08-21 11:23:16 UTC
moving to security response bug.  should we decide to fix this in a later update
for rhel4 we'll create appropriate tracking bugs with flags at that time.

Comment 3 Vincent Danen 2010-04-09 21:32:56 UTC
This issue is corrected in bluez-hcidump 1.32 as provided by Red Hat Enterprise Linux 5, and does not affect Red Hat Enterprise Linux 3.  The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw in Red Hat Enterprise Linux 4.

The above link no longer works; this updated link does:


Comment 4 Josh Bressers 2011-08-02 18:43:06 UTC

Red Hat no longer plans to fix this issue in Red Hat Enterprise Linux 4. This issue is corrected in bluez-hcidump 1.32 as provided by Red Hat Enterprise
Linux 5.

Note You need to log in before you can comment on or make changes to this bug.