SUSE-SU-2019:1339-1 -- SLES bluez, libbluetooth3ID: oval:org.secpod.oval:def:89003164 | Date: (C)2021-02-27 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for bluez fixes the following issues: Security vulnerability addressed: - CVE-2016-9797: Fixed a buffer over-read in l2cap_dump . - CVE-2016-9798: Fixed a use-after-free in conf_opt . - CVE-2016-9917: Fixed a heap-based buffer overflow in read_n . - CVE-2016-9802: Fixed a buffer over-read in l2cap_packet . - CVE-2016-9918: Fixed an out-of-bounds stack read in packet_hexdump, which could be triggered by processing a corrupted dump file and will result in a crash of the hcidump tool
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP4 |
Product: |
bluez |
libbluetooth3 |