The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.03939}

epss

{'score': 0.03997}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T22:00:39.937Z

Reserved: 2017-09-12T00:00:00

Link: CVE-2017-1000251

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2017-09-12T17:29:00.227

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-1000251

cve-icon Redhat

Severity : Important

Publid Date: 2017-09-12T00:00:00Z

Links: CVE-2017-1000251 - Bugzilla

cve-icon OpenCVE Enrichment

No data.