SUSE-SU-2019:1339-1

Advisory lineage Upstream: 5 Downstream: 0
Published: 24 May 2019, 10:57
Last modified:04 Feb 2026, 03:39

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

24 May 2019, 10:57
Published
Vulnerability first disclosed
04 Feb 2026, 03:39
Last Modified
Vulnerability information updated

Description

Security update for bluez This update for bluez fixes the following issues: Security vulnerability addressed: - CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708). - CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712). - CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171). - CVE-2016-9802: Fixed a buffer over-read in l2cap_packet() (bsc#1013893). - CVE-2016-9918: Fixed an out-of-bounds stack read in packet_hexdump(), which could be triggered by processing a corrupted dump file and will result in a crash of the hcidump tool (bsc#1015173)

Affected Systems

  • susebluez&distro=SUSE Linux Enterprise Desktop 12 SP3

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Desktop 12 SP4

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Server 12 SP3

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Server 12 SP4

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Software Development Kit 12 SP3

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Software Development Kit 12 SP4

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Workstation Extension 12 SP3

    < 5.13-5.12.1

  • susebluez&distro=SUSE Linux Enterprise Workstation Extension 12 SP4

    < 5.13-5.12.1

References (11)