High severity8.8NVD Advisory· Published Mar 10, 2022· Updated Apr 15, 2026
CVE-2022-0204
CVE-2022-0204
Description
A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
32- cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
- osv-coords28 versionspkg:rpm/opensuse/bluez&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/bluez&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/bluez&distro=openSUSE%20Tumbleweedpkg:rpm/suse/bluez&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/bluez&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4pkg:rpm/suse/bluez&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/bluez&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/bluez&distro=SUSE%20Manager%20Server%204.1
< 5.55-150300.3.11.1+ 27 more
- (no CPE)range: < 5.55-150300.3.11.1
- (no CPE)range: < 5.62-150400.4.5.1
- (no CPE)range: < 5.65-3.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.55-150300.3.11.1
- (no CPE)range: < 5.62-150400.4.5.1
- (no CPE)range: < 5.55-150300.3.11.1
- (no CPE)range: < 5.62-150400.4.5.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150000.5.31.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.55-150300.3.11.1
- (no CPE)range: < 5.62-150400.4.5.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150200.13.8.1
- (no CPE)range: < 5.48-150200.13.8.1
Patches
Vulnerability mechanics
References
6- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- github.com/bluez/bluez/commit/591c546c536b42bef696d027f64aa22434f8c3f0nvdPatchThird Party Advisory
- github.com/bluez/bluez/security/advisories/GHSA-479m-xcq5-9g2qnvdExploitThird Party Advisory
- lists.debian.org/debian-lts-announce/2022/10/msg00026.htmlnvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/202209-16nvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2024/09/msg00022.htmlnvd
News mentions
0No linked articles in our index yet.