Apple Information for VU#304725

Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

A security updated was provided for macOS and iOS on July 9th, 2018, as part of the regular security update. See the Apple security updates, macOS release notes and iOS release notes for further details.

Vendor References

https://support.apple.com/HT201222

https://support.apple.com/en-us/HT208937
https://support.apple.com/en-us/HT208848

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.