Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-9800

Опубликовано: 03 дек. 2016
Источник: redhat
CVSS3: 2.5
CVSS2: 1.2

Описание

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5bluez-hcidumpWill not fix
Red Hat Enterprise Linux 6bluezWill not fix
Red Hat Enterprise Linux 7bluezWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=1401527bluez: buffer overflow in pin_code_reply_dump()

2.5 Low

CVSS3

1.2 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-9800

CVSS3: 5.3
ubuntu
около 9 лет назад

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.

nvd логотип

CVE-2016-9800

CVSS3: 5.3
nvd
около 9 лет назад

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.

debian логотип

CVE-2016-9800

CVSS3: 5.3
debian
около 9 лет назад

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" ...

github логотип

GHSA-pcrc-6m42-jvr8

CVSS3: 5.3
github
больше 3 лет назад

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.

suse-cvrf логотип

openSUSE-SU-2018:4259-1

suse-cvrf
около 7 лет назад

Security update for bluez

2.5 Low

CVSS3

1.2 Low

CVSS2