rpm package
suse/bluez&distro=SUSE Linux Enterprise Workstation Extension 15 SP1
pkg:rpm/suse/bluez&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1
Vulnerabilities (6)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-27153 | Hig | 8.6 | < 5.48-5.28.1 | 5.48-5.28.1 | Oct 15, 2020 | In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event. | |
| CVE-2020-0556 | — | < 5.48-5.25.1 | 5.48-5.25.1 | Mar 12, 2020 | Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access | ||
| CVE-2016-9917 | Hig | 7.5 | < 5.48-5.16.1 | 5.48-5.16.1 | Dec 8, 2016 | In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. | |
| CVE-2016-9802 | Med | 5.3 | < 5.48-5.16.1 | 5.48-5.16.1 | Dec 3, 2016 | In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash. | |
| CVE-2016-9798 | Med | 5.3 | < 5.48-5.16.1 | 5.48-5.16.1 | Dec 3, 2016 | In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. | |
| CVE-2016-9797 | Med | 5.3 | < 5.48-5.16.1 | 5.48-5.16.1 | Dec 3, 2016 | In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. |
- affected < 5.48-5.28.1fixed 5.48-5.28.1
In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event.
- CVE-2020-0556Mar 12, 2020affected < 5.48-5.25.1fixed 5.48-5.25.1
Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access
- affected < 5.48-5.16.1fixed 5.48-5.16.1
In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.
- affected < 5.48-5.16.1fixed 5.48-5.16.1
In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
- affected < 5.48-5.16.1fixed 5.48-5.16.1
In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.
- affected < 5.48-5.16.1fixed 5.48-5.16.1
In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.