BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c. CREATE(Triage):(User=admin) CVE-2022-39177 (https://nvd.nist.gov/vuln/detail/CVE-2022-39177)