Описание
Security update for bluez
This update for bluez fixes the following issues:
Security issue fixed:
- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
bluez-5.48-lp150.4.10.1
bluez-auto-enable-devices-5.48-lp150.4.10.1
bluez-cups-5.48-lp150.4.10.1
bluez-devel-5.48-lp150.4.10.1
bluez-devel-32bit-5.48-lp150.4.10.1
bluez-test-5.48-lp150.4.10.1
libbluetooth3-5.48-lp150.4.10.1
libbluetooth3-32bit-5.48-lp150.4.10.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1198-1
- SUSE Security Ratings
- SUSE Bug 1015173
- SUSE CVE CVE-2016-9918 page
Описание
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
Затронутые продукты
openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1
openSUSE Leap 15.0:bluez-auto-enable-devices-5.48-lp150.4.10.1
openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1
openSUSE Leap 15.0:bluez-devel-32bit-5.48-lp150.4.10.1
Ссылки
- CVE-2016-9918
- SUSE Bug 1013893
- SUSE Bug 1015173