Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:1353-2

Опубликовано: 18 окт. 2019
Источник: suse-cvrf

Описание

Security update for bluez

This update for bluez fixes the following issues:

Security issues fixed:

  • CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708).
  • CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712).
  • CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171).
  • CVE-2016-9802: Fixed a buffer over-read in l2cap_packet() (bsc#1013893).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP1
libbluetooth3-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
bluez-5.48-5.16.1
bluez-devel-5.48-5.16.1
SUSE Linux Enterprise Workstation Extension 15 SP1
bluez-cups-5.48-5.16.1

Ссылки

Описание

In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:libbluetooth3-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-devel-5.48-5.16.1
SUSE Linux Enterprise Workstation Extension 15 SP1:bluez-cups-5.48-5.16.1
Ссылки

Описание

In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:libbluetooth3-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-devel-5.48-5.16.1
SUSE Linux Enterprise Workstation Extension 15 SP1:bluez-cups-5.48-5.16.1
Ссылки

Описание

In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.

Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:libbluetooth3-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-devel-5.48-5.16.1
SUSE Linux Enterprise Workstation Extension 15 SP1:bluez-cups-5.48-5.16.1
Ссылки

Описание

In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:libbluetooth3-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-5.48-5.16.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1:bluez-devel-5.48-5.16.1
SUSE Linux Enterprise Workstation Extension 15 SP1:bluez-cups-5.48-5.16.1
Ссылки