Описание
Security update for bluez
This update for bluez fixes the following issues:
Security issue fixed:
- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
libbluetooth3-5.48-5.13.10
SUSE Linux Enterprise Module for Desktop Applications 15
bluez-5.48-5.13.10
bluez-devel-5.48-5.13.10
SUSE Linux Enterprise Workstation Extension 15
bluez-cups-5.48-5.13.10
Ссылки
- Link for SUSE-SU-2019:0841-1
- E-Mail link for SUSE-SU-2019:0841-1
- SUSE Security Ratings
- SUSE Bug 1015173
- SUSE CVE CVE-2016-9918 page
Описание
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10
SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10
SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10
SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.13.10
Ссылки
- CVE-2016-9918
- SUSE Bug 1013893
- SUSE Bug 1015173