Errata overview
Errata ID 369
Date 2018-05-08
Source package bluez
Fixed in version 5.23-2+deb8u1
This update addresses the following issue:
* All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to
  an information disclosure vulnerability which allows remote attackers to
  obtain sensitive information from the bluetoothd process memory. This
  vulnerability lies in the processing of SDP search attribute requests.
Additional notes
CVE ID CVE-2017-1000250
UCS Bug number #45551