Google Information for VU#304725

Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Patches are available as part of the June 2018 Android security update. See Android security bulletin for Google devices for more information.

Vendor References

https://source.android.com/security/bulletin/2018-06-01

https://source.android.com/security/bulletin/pixel/2018-06-01

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.