SUSE-SU-2022:3691-1 -- SLES bluez, libbluetooth3ID: oval:org.secpod.oval:def:89047718 | Date: (C)2022-10-28 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for bluez fixes the following issues: - CVE-2019-8921: Fixed heap-based buffer overflow via crafted request . - CVE-2019-8922: Fixed heap-based buffer overflow via crafted request . - CVE-2020-26558: Fixed vulnerability that may permit a nearby man-in-the-middle attacker to identify the Passkey . - CVE-2021-0129: Fixed improper access control . - CVE-2021-3658: Fixed adapter incorrectly restoring discoverable state after powered down . - CVE-2021-43400: Fixed use-after-free in gatt-database.c .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
Product: |
bluez |
libbluetooth3 |