VDB
RHSA-2017%3A2682
RHSA-2017%3A2682
PUBLISHED
CVSS 7.5 HIGH
Red Hat Security Advisory: kernel security update
Risk Scores
CVSS 3.0
7.5
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:rhel_eus:6.7::computenode | python-perf | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-kdump | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-bootwrapper | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-doc | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | python-perf-debuginfo | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-bootwrapper | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-firmware | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-kdump-debuginfo | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | perf-debuginfo | 0, 0 |
| Red Hat:rhel_eus:6.7::server | python-perf | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-headers | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-debuginfo-common-x86_64 | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-kdump-devel | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-debug-devel | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-debug | 0, 0 |
| Red Hat:rhel_eus:6.7::server | perf | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-devel | 0, 0 |
| Red Hat:rhel_eus:6.7::server | kernel-debuginfo-common-s390x | 0, 0 |
| Red Hat:rhel_eus:6.7::computenode | kernel-debug | 0, 0 |
…and 24 more
Exploit Intelligence
- clone (github-poc-repo)
- clone (github-poc-repo)
- own2pwn/blueborne-CVE-2017-1000251-POC (github-poc-repo)
- own2pwn/blueborne-CVE-2017-1000251-POC (github-poc-repo)
- BlueBorne Exploits & Framework This repository contains a PoC code of various exploits for the BlueBorne vulnerabilities. Under 'android' exploits for the Android RCE vulnerability (CVE-2017-0781), and the SDP Information leak vulnerability (CVE-2017-0785) can be found. Under 'linux-bluez' exploits for the Linux-RCE vulnerability (CVE-2017-1000251) can be found (for Amazon Echo, and Samsung Gear S3). Under 'l2cap_infra' a general testing framework to send and receive raw l2cap messages (us... (github-poc-repo)
- BlueBorne Exploits & Framework This repository contains a PoC code of various exploits for the BlueBorne vulnerabilities. Under 'android' exploits for the Android RCE vulnerability (CVE-2017-0781), and the SDP Information leak vulnerability (CVE-2017-0785) can be found. Under 'linux-bluez' exploits for the Linux-RCE vulnerability (CVE-2017-1000251) can be found (for Amazon Echo, and Samsung Gear S3). Under 'l2cap_infra' a general testing framework to send and receive raw l2cap messages (us... (github-poc-repo)
- PoC exploit for CVE-2017-1000251 (modified) (github-poc-repo)
- PoC exploit for CVE-2017-1000251 (modified) (github-poc-repo)
- Blueborne CVE-2017-1000251 PoC for linux machines (github-poc-repo)
- Blueborne CVE-2017-1000251 PoC for linux machines (github-poc-repo)
…and 14 more exploits
Timeline
- Sep 12, 2017 CVE Published
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- May 13, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2017:2682 advisory
- https://access.redhat.com/security/updates/classification/#important article
- https://access.redhat.com/security/vulnerabilities/CVE-2017-1000251 article
- https://bugzilla.redhat.com/show_bug.cgi?id=1489716 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2682.json advisory
- https://access.redhat.com/security/cve/CVE-2017-1000251 report
- https://www.cve.org/CVERecord?id=CVE-2017-1000251 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000251 advisory
- https://access.redhat.com/blogs/product-security/posts/blueborne article
- https://access.redhat.com/security/vulnerabilities/blueborne article
- https://access.redhat.com/solutions/3177231 article
- https://www.armis.com/blueborne/ article