Security update for bluez SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:1353-1 Final 1 1 2019-05-24T12:42:40Z current 2019-05-24T12:42:40Z 2019-05-24T12:42:40Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bluez This update for bluez fixes the following issues: Security issues fixed: - CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708). - CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712). - CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2019-1353,SUSE-SLE-Module-Basesystem-15-2019-1353,SUSE-SLE-Module-Desktop-Applications-15-2019-1353,SUSE-SLE-Module-Development-Tools-OBS-15-2019-1353,SUSE-SLE-Product-WE-15-2019-1353 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20191353-1/ Link for SUSE-SU-2019:1353-1 https://lists.suse.com/pipermail/sle-security-updates/2019-May/005496.html E-Mail link for SUSE-SU-2019:1353-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1013708 SUSE Bug 1013708 https://bugzilla.suse.com/1013712 SUSE Bug 1013712 https://bugzilla.suse.com/1013893 SUSE Bug 1013893 https://bugzilla.suse.com/1015171 SUSE Bug 1015171 https://www.suse.com/security/cve/CVE-2016-9797/ SUSE CVE CVE-2016-9797 page https://www.suse.com/security/cve/CVE-2016-9798/ SUSE CVE CVE-2016-9798 page https://www.suse.com/security/cve/CVE-2016-9802/ SUSE CVE CVE-2016-9802 page https://www.suse.com/security/cve/CVE-2016-9917/ SUSE CVE CVE-2016-9917 page SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Workstation Extension 15 bluez-5.48-5.16.1 bluez-auto-enable-devices-5.48-5.16.1 bluez-cups-5.48-5.16.1 bluez-devel-5.48-5.16.1 bluez-devel-32bit-5.48-5.16.1 bluez-devel-64bit-5.48-5.16.1 bluez-test-5.48-5.16.1 libbluetooth3-5.48-5.16.1 libbluetooth3-32bit-5.48-5.16.1 libbluetooth3-64bit-5.48-5.16.1 libbluetooth3-5.48-5.16.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 bluez-5.48-5.16.1 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 bluez-devel-5.48-5.16.1 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 bluez-cups-5.48-5.16.1 as a component of SUSE Linux Enterprise Workstation Extension 15 In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. CVE-2016-9797 SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.16.1 SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.16.1 low 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191353-1/ https://www.suse.com/security/cve/CVE-2016-9797.html CVE-2016-9797 https://bugzilla.suse.com/1013708 SUSE Bug 1013708 https://bugzilla.suse.com/1013712 SUSE Bug 1013712 In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. CVE-2016-9798 SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.16.1 SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.16.1 low 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191353-1/ https://www.suse.com/security/cve/CVE-2016-9798.html CVE-2016-9798 https://bugzilla.suse.com/1013708 SUSE Bug 1013708 https://bugzilla.suse.com/1013712 SUSE Bug 1013712 https://bugzilla.suse.com/1013732 SUSE Bug 1013732 In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash. CVE-2016-9802 SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.16.1 SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.16.1 low 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191353-1/ https://www.suse.com/security/cve/CVE-2016-9802.html CVE-2016-9802 https://bugzilla.suse.com/1013893 SUSE Bug 1013893 https://bugzilla.suse.com/1015173 SUSE Bug 1015173 In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash. CVE-2016-9917 SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.16.1 SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.16.1 SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.16.1 moderate 4.3 AV:A/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191353-1/ https://www.suse.com/security/cve/CVE-2016-9917.html CVE-2016-9917 https://bugzilla.suse.com/1015171 SUSE Bug 1015171