Security update for bluez SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:4188-1 Final 1 1 2018-12-19T12:54:16Z current 2018-12-19T12:54:16Z 2018-12-19T12:54:16Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bluez This update for bluez fixes the following issues: Security issues fixed: - CVE-2016-9800: Fixed a buffer overflow in the pin_code_reply_dump function (bsc#1013721) - CVE-2016-9801: Fixed a buffer overflow in the set_ext_ctrl function (bsc#1013732) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP3-2018-2987,SUSE-SLE-DESKTOP-12-SP4-2018-2987,SUSE-SLE-SDK-12-SP3-2018-2987,SUSE-SLE-SDK-12-SP4-2018-2987,SUSE-SLE-SERVER-12-SP3-2018-2987,SUSE-SLE-SERVER-12-SP4-2018-2987,SUSE-SLE-WE-12-SP3-2018-2987,SUSE-SLE-WE-12-SP4-2018-2987 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20184188-1/ Link for SUSE-SU-2018:4188-1 https://lists.suse.com/pipermail/sle-security-updates/2018-December/004981.html E-Mail link for SUSE-SU-2018:4188-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1013721 SUSE Bug 1013721 https://bugzilla.suse.com/1013732 SUSE Bug 1013732 https://www.suse.com/security/cve/CVE-2016-9800/ SUSE CVE CVE-2016-9800 page https://www.suse.com/security/cve/CVE-2016-9801/ SUSE CVE CVE-2016-9801 page SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 bluez-5.13-5.7.1 bluez-cups-5.13-5.7.1 libbluetooth3-5.13-5.7.1 bluez-devel-5.13-5.7.1 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 bluez-cups-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 bluez-cups-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Server 12 SP3 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Server 12 SP3 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Server 12 SP4 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Server 12 SP4 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 bluez-5.13-5.7.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libbluetooth3-5.13-5.7.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 bluez-devel-5.13-5.7.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 bluez-devel-5.13-5.7.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP4 bluez-cups-5.13-5.7.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP3 bluez-cups-5.13-5.7.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter. CVE-2016-9800 SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.7.1 SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.7.1 SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.7.1 low 4 AV:L/AC:H/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20184188-1/ https://www.suse.com/security/cve/CVE-2016-9800.html CVE-2016-9800 https://bugzilla.suse.com/1013721 SUSE Bug 1013721 In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" function in "tools/parser/l2cap.c" source file when processing corrupted dump file. CVE-2016-9801 SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.7.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.7.1 SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.7.1 SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.7.1 SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.7.1 SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.7.1 moderate 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20184188-1/ https://www.suse.com/security/cve/CVE-2016-9801.html CVE-2016-9801 https://bugzilla.suse.com/1013732 SUSE Bug 1013732