rpm package
suse/bluez&distro=SUSE Manager Retail Branch Server 4.2
pkg:rpm/suse/bluez&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-39177 | Hig | 8.8 | < 5.55-150300.3.19.1 | 5.55-150300.3.19.1 | Sep 2, 2022 | BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c. | |
| CVE-2022-39176 | Hig | 8.8 | < 5.55-150300.3.19.1 | 5.55-150300.3.19.1 | Sep 2, 2022 | BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len. |
- affected < 5.55-150300.3.19.1fixed 5.55-150300.3.19.1
BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c.
- affected < 5.55-150300.3.19.1fixed 5.55-150300.3.19.1
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len.