CVE-2018-16264

Name of the Vulnerable Software and Affected Versions: Tizen versions prior to 5.0 M1 Tizen-based firmwares including Samsung Galaxy Gear series before build RE2

Description: The issue is related to the BlueZ system service in Tizen, which has improper D-Bus security policy configurations. This allows an unprivileged process to partially control Bluetooth or acquire sensitive information.

Recommendations: For Tizen versions prior to 5.0 M1, update to version 5.0 M1 or later to resolve the issue. For Tizen-based firmwares including Samsung Galaxy Gear series before build RE2, update to build RE2 or later to resolve the issue.