SUSE-SU-2022:2837-1

Опубликовано: 18 авг. 2022

Источник: suse-cvrf

Описание

Security update for bluez

This update for bluez fixes the following issues:

CVE-2022-0204: Fixed a buffer overflow in the implementation of the gatt protocol (bsc#1194704).

Список пакетов

SUSE Enterprise Storage 6

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise High Performance Computing 15-ESPOS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise High Performance Computing 15-LTSS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise Server 15 SP1-BCL

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise Server 15 SP1-LTSS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise Server 15-LTSS

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise Server for SAP Applications 15

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

bluez-5.48-150000.5.31.1

bluez-devel-5.48-150000.5.31.1

libbluetooth3-5.48-150000.5.31.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20222837-1/
Link for SUSE-SU-2022:2837-1
https://lists.suse.com/pipermail/sle-security-updates/2022-August/011940.html
E-Mail link for SUSE-SU-2022:2837-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1194704
SUSE Bug 1194704
https://www.suse.com/security/cve/CVE-2022-0204/
SUSE CVE CVE-2022-0204 page

Описание

A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service.

Затронутые продукты

SUSE Enterprise Storage 6:bluez-5.48-150000.5.31.1

SUSE Enterprise Storage 6:bluez-devel-5.48-150000.5.31.1

SUSE Enterprise Storage 6:libbluetooth3-5.48-150000.5.31.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:bluez-5.48-150000.5.31.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-0204.html
CVE-2022-0204
https://bugzilla.suse.com/1194704
SUSE Bug 1194704

SUSE-SU-2022:2837-1

Описание

Список пакетов

SUSE Enterprise Storage 6

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

SUSE Linux Enterprise High Performance Computing 15-ESPOS

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise Server 15 SP1-BCL

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Server for SAP Applications 15

SUSE Linux Enterprise Server for SAP Applications 15 SP1

Ссылки

Уязвимость: CVE-2022-0204

Описание

Затронутые продукты

Ссылки