Описание
Security update for bluez
This update for bluez fixes the following issues:
- CVE-2022-3563: Fixed a potential crash in the mgmt-tester tool (bsc#1204426).
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP4
bluez-5.62-150400.4.8.1
bluez-deprecated-5.62-150400.4.8.1
libbluetooth3-5.62-150400.4.8.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP4
bluez-devel-5.62-150400.4.8.1
SUSE Linux Enterprise Workstation Extension 15 SP4
bluez-cups-5.62-150400.4.8.1
openSUSE Leap 15.4
bluez-5.62-150400.4.8.1
bluez-auto-enable-devices-5.62-150400.4.8.1
bluez-cups-5.62-150400.4.8.1
bluez-deprecated-5.62-150400.4.8.1
bluez-devel-5.62-150400.4.8.1
bluez-devel-32bit-5.62-150400.4.8.1
bluez-test-5.62-150400.4.8.1
libbluetooth3-5.62-150400.4.8.1
libbluetooth3-32bit-5.62-150400.4.8.1
Ссылки
- Link for SUSE-SU-2023:0167-1
- E-Mail link for SUSE-SU-2023:0167-1
- SUSE Security Ratings
- SUSE Bug 1204426
- SUSE CVE CVE-2022-3563 page
Описание
A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function read_50_controller_cap_complete of the file tools/mgmt-tester.c of the component BlueZ. The manipulation of the argument cap_len leads to null pointer dereference. It is recommended to apply a patch to fix this issue. VDB-211086 is the identifier assigned to this vulnerability.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP4:bluez-5.62-150400.4.8.1
SUSE Linux Enterprise Module for Basesystem 15 SP4:bluez-deprecated-5.62-150400.4.8.1
SUSE Linux Enterprise Module for Basesystem 15 SP4:libbluetooth3-5.62-150400.4.8.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP4:bluez-devel-5.62-150400.4.8.1
Ссылки
- CVE-2022-3563
- SUSE Bug 1204426