Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-9918 (GCVE-0-2016-9918)
Vulnerability from cvelistv5
Published
2016-12-08 08:08
Modified
2024-08-06 03:07
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
References
| ► | URL | Tags | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T03:07:31.243Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"name": "95013",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/95013"
},
{
"name": "openSUSE-SU-2019:1198",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-12-08T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-04-12T12:06:02",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"name": "95013",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/95013"
},
{
"name": "openSUSE-SU-2019:1198",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2016-9918",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html",
"refsource": "MISC",
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"name": "95013",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/95013"
},
{
"name": "openSUSE-SU-2019:1198",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2016-9918",
"datePublished": "2016-12-08T08:08:00",
"dateReserved": "2016-12-08T00:00:00",
"dateUpdated": "2024-08-06T03:07:31.243Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2016-9918\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2016-12-08T08:59:04.740\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In BlueZ 5.42, an out-of-bounds read was identified in \\\"packet_hexdump\\\" function in \\\"monitor/packet.c\\\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.\"},{\"lang\":\"es\",\"value\":\"En BlueZ 5.42, una lectura fuera de l\u00edmites fue identificada en la funci\u00f3n \\\"packet_hexdump\\\" en el archivo fuente \\\"monitor/packet.c\\\". Este problema puede ser desencadenado procesando un archivo de volcado corrupto y resultar\u00e1 en una ca\u00edda btmon.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:bluez_project:bluez:5.42:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9F3F320-092F-4B1C-9271-EBA2C01C2E84\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/95013\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.spinics.net/lists/linux-bluetooth/msg68898.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/95013\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.spinics.net/lists/linux-bluetooth/msg68898.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]}]}}"
}
}
ghsa-wv4g-wq9q-gp9j
Vulnerability from github
Published
2022-05-14 01:10
Modified
2022-05-14 01:10
Severity ?
VLAI Severity ?
Details
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
{
"affected": [],
"aliases": [
"CVE-2016-9918"
],
"database_specific": {
"cwe_ids": [
"CWE-125"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-12-08T08:59:00Z",
"severity": "HIGH"
},
"details": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"id": "GHSA-wv4g-wq9q-gp9j",
"modified": "2022-05-14T01:10:43Z",
"published": "2022-05-14T01:10:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9918"
},
{
"type": "WEB",
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/95013"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
suse-su-2019:0510-1
Vulnerability from csaf_suse
Published
2019-02-28 08:53
Modified
2019-02-28 08:53
Summary
Security update for bluez
Notes
Title of the patch
Security update for bluez
Description of the patch
This update for bluez fixes the following issues:
Security issues fixed:
- CVE-2016-7837: Fixed possible buffer overflow, make sure we don't write past the end of the array.(bsc#1026652)
- CVE-2016-9800: Fix hcidump memory leak in pin_code_reply_dump() (bsc#1013721).
- CVE-2016-9801: Fixed a buffer overflow in set_ext_ctrl function (bsc#1013732)
- CVE-2016-9804: Fix hcidump buffer overflow in commands_dump() (bsc#1013877).
- CVE-2016-9918: Fixed an out-of-bounds read in packet_hexdump() (bsc#1015173)
- CVE-2017-1000250: Fixed a information leak in SDP (part of the recently published BlueBorne vulnerabilities) (bsc#1057342)
Patchnames
SUSE-2019-510,SUSE-SLE-SAP-12-SP1-2019-510,SUSE-SLE-SERVER-12-2019-510,SUSE-SLE-SERVER-12-SP1-2019-510
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bluez",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bluez fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2016-7837: Fixed possible buffer overflow, make sure we don\u0027t write past the end of the array.(bsc#1026652)\n- CVE-2016-9800: Fix hcidump memory leak in pin_code_reply_dump() (bsc#1013721).\n- CVE-2016-9801: Fixed a buffer overflow in set_ext_ctrl function (bsc#1013732)\n- CVE-2016-9804: Fix hcidump buffer overflow in commands_dump() (bsc#1013877).\n- CVE-2016-9918: Fixed an out-of-bounds read in packet_hexdump() (bsc#1015173)\n- CVE-2017-1000250: Fixed a information leak in SDP (part of the recently published BlueBorne vulnerabilities) (bsc#1057342)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-510,SUSE-SLE-SAP-12-SP1-2019-510,SUSE-SLE-SERVER-12-2019-510,SUSE-SLE-SERVER-12-SP1-2019-510",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0510-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:0510-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190510-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:0510-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005161.html"
},
{
"category": "self",
"summary": "SUSE Bug 1013721",
"url": "https://bugzilla.suse.com/1013721"
},
{
"category": "self",
"summary": "SUSE Bug 1013732",
"url": "https://bugzilla.suse.com/1013732"
},
{
"category": "self",
"summary": "SUSE Bug 1013877",
"url": "https://bugzilla.suse.com/1013877"
},
{
"category": "self",
"summary": "SUSE Bug 1015173",
"url": "https://bugzilla.suse.com/1015173"
},
{
"category": "self",
"summary": "SUSE Bug 1026652",
"url": "https://bugzilla.suse.com/1026652"
},
{
"category": "self",
"summary": "SUSE Bug 1057342",
"url": "https://bugzilla.suse.com/1057342"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7837 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9800 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9801 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9804 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9918 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-1000250 page",
"url": "https://www.suse.com/security/cve/CVE-2017-1000250/"
}
],
"title": "Security update for bluez",
"tracking": {
"current_release_date": "2019-02-28T08:53:14Z",
"generator": {
"date": "2019-02-28T08:53:14Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:0510-1",
"initial_release_date": "2019-02-28T08:53:14Z",
"revision_history": [
{
"date": "2019-02-28T08:53:14Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.aarch64",
"product": {
"name": "bluez-5.13-3.10.1.aarch64",
"product_id": "bluez-5.13-3.10.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.aarch64",
"product": {
"name": "bluez-cups-5.13-3.10.1.aarch64",
"product_id": "bluez-cups-5.13-3.10.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.aarch64",
"product": {
"name": "bluez-devel-5.13-3.10.1.aarch64",
"product_id": "bluez-devel-5.13-3.10.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.aarch64",
"product": {
"name": "bluez-test-5.13-3.10.1.aarch64",
"product_id": "bluez-test-5.13-3.10.1.aarch64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.aarch64",
"product": {
"name": "libbluetooth3-5.13-3.10.1.aarch64",
"product_id": "libbluetooth3-5.13-3.10.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-devel-64bit-5.13-3.10.1.aarch64_ilp32",
"product": {
"name": "bluez-devel-64bit-5.13-3.10.1.aarch64_ilp32",
"product_id": "bluez-devel-64bit-5.13-3.10.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libbluetooth3-64bit-5.13-3.10.1.aarch64_ilp32",
"product": {
"name": "libbluetooth3-64bit-5.13-3.10.1.aarch64_ilp32",
"product_id": "libbluetooth3-64bit-5.13-3.10.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.i586",
"product": {
"name": "bluez-5.13-3.10.1.i586",
"product_id": "bluez-5.13-3.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.i586",
"product": {
"name": "bluez-cups-5.13-3.10.1.i586",
"product_id": "bluez-cups-5.13-3.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.i586",
"product": {
"name": "bluez-devel-5.13-3.10.1.i586",
"product_id": "bluez-devel-5.13-3.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.i586",
"product": {
"name": "bluez-test-5.13-3.10.1.i586",
"product_id": "bluez-test-5.13-3.10.1.i586"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.i586",
"product": {
"name": "libbluetooth3-5.13-3.10.1.i586",
"product_id": "libbluetooth3-5.13-3.10.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.ppc64le",
"product": {
"name": "bluez-5.13-3.10.1.ppc64le",
"product_id": "bluez-5.13-3.10.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.ppc64le",
"product": {
"name": "bluez-cups-5.13-3.10.1.ppc64le",
"product_id": "bluez-cups-5.13-3.10.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.ppc64le",
"product": {
"name": "bluez-devel-5.13-3.10.1.ppc64le",
"product_id": "bluez-devel-5.13-3.10.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.ppc64le",
"product": {
"name": "bluez-test-5.13-3.10.1.ppc64le",
"product_id": "bluez-test-5.13-3.10.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.ppc64le",
"product": {
"name": "libbluetooth3-5.13-3.10.1.ppc64le",
"product_id": "libbluetooth3-5.13-3.10.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.s390",
"product": {
"name": "bluez-5.13-3.10.1.s390",
"product_id": "bluez-5.13-3.10.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.s390",
"product": {
"name": "bluez-cups-5.13-3.10.1.s390",
"product_id": "bluez-cups-5.13-3.10.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.s390",
"product": {
"name": "bluez-devel-5.13-3.10.1.s390",
"product_id": "bluez-devel-5.13-3.10.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.s390",
"product": {
"name": "bluez-test-5.13-3.10.1.s390",
"product_id": "bluez-test-5.13-3.10.1.s390"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.s390",
"product": {
"name": "libbluetooth3-5.13-3.10.1.s390",
"product_id": "libbluetooth3-5.13-3.10.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.s390x",
"product": {
"name": "bluez-5.13-3.10.1.s390x",
"product_id": "bluez-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.s390x",
"product": {
"name": "bluez-cups-5.13-3.10.1.s390x",
"product_id": "bluez-cups-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.s390x",
"product": {
"name": "bluez-devel-5.13-3.10.1.s390x",
"product_id": "bluez-devel-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.13-3.10.1.s390x",
"product": {
"name": "bluez-devel-32bit-5.13-3.10.1.s390x",
"product_id": "bluez-devel-32bit-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.s390x",
"product": {
"name": "bluez-test-5.13-3.10.1.s390x",
"product_id": "bluez-test-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.s390x",
"product": {
"name": "libbluetooth3-5.13-3.10.1.s390x",
"product_id": "libbluetooth3-5.13-3.10.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.13-3.10.1.s390x",
"product": {
"name": "libbluetooth3-32bit-5.13-3.10.1.s390x",
"product_id": "libbluetooth3-32bit-5.13-3.10.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-3.10.1.x86_64",
"product": {
"name": "bluez-5.13-3.10.1.x86_64",
"product_id": "bluez-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-3.10.1.x86_64",
"product": {
"name": "bluez-cups-5.13-3.10.1.x86_64",
"product_id": "bluez-cups-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-3.10.1.x86_64",
"product": {
"name": "bluez-devel-5.13-3.10.1.x86_64",
"product_id": "bluez-devel-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.13-3.10.1.x86_64",
"product": {
"name": "bluez-devel-32bit-5.13-3.10.1.x86_64",
"product_id": "bluez-devel-32bit-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-3.10.1.x86_64",
"product": {
"name": "bluez-test-5.13-3.10.1.x86_64",
"product_id": "bluez-test-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-3.10.1.x86_64",
"product": {
"name": "libbluetooth3-5.13-3.10.1.x86_64",
"product_id": "libbluetooth3-5.13-3.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.13-3.10.1.x86_64",
"product": {
"name": "libbluetooth3-32bit-5.13-3.10.1.x86_64",
"product_id": "libbluetooth3-32bit-5.13-3.10.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le"
},
"product_reference": "bluez-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64"
},
"product_reference": "bluez-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le"
},
"product_reference": "bluez-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x"
},
"product_reference": "bluez-5.13-3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64"
},
"product_reference": "bluez-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x"
},
"product_reference": "libbluetooth3-5.13-3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le"
},
"product_reference": "bluez-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x"
},
"product_reference": "bluez-5.13-3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64"
},
"product_reference": "bluez-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x"
},
"product_reference": "libbluetooth3-5.13-3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-3.10.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-7837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7837"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the parse_line function used in some userland utilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7837",
"url": "https://www.suse.com/security/cve/CVE-2016-7837"
},
{
"category": "external",
"summary": "SUSE Bug 1026652 for CVE-2016-7837",
"url": "https://bugzilla.suse.com/1026652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "moderate"
}
],
"title": "CVE-2016-7837"
},
{
"cve": "CVE-2016-9800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9800"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer overflow was observed in \"pin_code_reply_dump\" function in \"tools/parser/hci.c\" source file. The issue exists because \"pin\" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame \"pin_code_reply_cp *cp\" parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9800",
"url": "https://www.suse.com/security/cve/CVE-2016-9800"
},
{
"category": "external",
"summary": "SUSE Bug 1013721 for CVE-2016-9800",
"url": "https://bugzilla.suse.com/1013721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "low"
}
],
"title": "CVE-2016-9800"
},
{
"cve": "CVE-2016-9801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9801"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer overflow was observed in \"set_ext_ctrl\" function in \"tools/parser/l2cap.c\" source file when processing corrupted dump file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9801",
"url": "https://www.suse.com/security/cve/CVE-2016-9801"
},
{
"category": "external",
"summary": "SUSE Bug 1013732 for CVE-2016-9801",
"url": "https://bugzilla.suse.com/1013732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "low"
}
],
"title": "CVE-2016-9801"
},
{
"cve": "CVE-2016-9804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9804"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer overflow was observed in \"commands_dump\" function in \"tools/parser/csr.c\" source file. The issue exists because \"commands\" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame \"frm-\u003eptr\" parameter. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9804",
"url": "https://www.suse.com/security/cve/CVE-2016-9804"
},
{
"category": "external",
"summary": "SUSE Bug 1013877 for CVE-2016-9804",
"url": "https://bugzilla.suse.com/1013877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "moderate"
}
],
"title": "CVE-2016-9804"
},
{
"cve": "CVE-2016-9918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9918"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9918",
"url": "https://www.suse.com/security/cve/CVE-2016-9918"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "moderate"
}
],
"title": "CVE-2016-9918"
},
{
"cve": "CVE-2017-1000250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-1000250"
}
],
"notes": [
{
"category": "general",
"text": "All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-1000250",
"url": "https://www.suse.com/security/cve/CVE-2017-1000250"
},
{
"category": "external",
"summary": "SUSE Bug 1057342 for CVE-2017-1000250",
"url": "https://bugzilla.suse.com/1057342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:libbluetooth3-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:bluez-5.13-3.10.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbluetooth3-5.13-3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-28T08:53:14Z",
"details": "low"
}
],
"title": "CVE-2017-1000250"
}
]
}
suse-su-2019:1339-1
Vulnerability from csaf_suse
Published
2019-05-24 10:57
Modified
2019-05-24 10:57
Summary
Security update for bluez
Notes
Title of the patch
Security update for bluez
Description of the patch
This update for bluez fixes the following issues:
Security vulnerability addressed:
- CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708).
- CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712).
- CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171).
- CVE-2016-9802: Fixed a buffer over-read in l2cap_packet() (bsc#1013893).
- CVE-2016-9918: Fixed an out-of-bounds stack read in packet_hexdump(),
which could be triggered by processing a corrupted dump file and will result
in a crash of the hcidump tool (bsc#1015173)
Patchnames
SUSE-2019-1339,SUSE-SLE-DESKTOP-12-SP3-2019-1339,SUSE-SLE-DESKTOP-12-SP4-2019-1339,SUSE-SLE-SDK-12-SP3-2019-1339,SUSE-SLE-SDK-12-SP4-2019-1339,SUSE-SLE-SERVER-12-SP3-2019-1339,SUSE-SLE-SERVER-12-SP4-2019-1339,SUSE-SLE-WE-12-SP3-2019-1339,SUSE-SLE-WE-12-SP4-2019-1339
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bluez",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bluez fixes the following issues:\n\nSecurity vulnerability addressed:\n\n- CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708).\n- CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712).\n- CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171).\n- CVE-2016-9802: Fixed a buffer over-read in l2cap_packet() (bsc#1013893).\n- CVE-2016-9918: Fixed an out-of-bounds stack read in packet_hexdump(),\n which could be triggered by processing a corrupted dump file and will result\n in a crash of the hcidump tool (bsc#1015173)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-1339,SUSE-SLE-DESKTOP-12-SP3-2019-1339,SUSE-SLE-DESKTOP-12-SP4-2019-1339,SUSE-SLE-SDK-12-SP3-2019-1339,SUSE-SLE-SDK-12-SP4-2019-1339,SUSE-SLE-SERVER-12-SP3-2019-1339,SUSE-SLE-SERVER-12-SP4-2019-1339,SUSE-SLE-WE-12-SP3-2019-1339,SUSE-SLE-WE-12-SP4-2019-1339",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1339-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:1339-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191339-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:1339-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-May/005494.html"
},
{
"category": "self",
"summary": "SUSE Bug 1013708",
"url": "https://bugzilla.suse.com/1013708"
},
{
"category": "self",
"summary": "SUSE Bug 1013712",
"url": "https://bugzilla.suse.com/1013712"
},
{
"category": "self",
"summary": "SUSE Bug 1013893",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "self",
"summary": "SUSE Bug 1015171",
"url": "https://bugzilla.suse.com/1015171"
},
{
"category": "self",
"summary": "SUSE Bug 1015173",
"url": "https://bugzilla.suse.com/1015173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9797 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9798 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9802 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9917 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9918 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9918/"
}
],
"title": "Security update for bluez",
"tracking": {
"current_release_date": "2019-05-24T10:57:06Z",
"generator": {
"date": "2019-05-24T10:57:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:1339-1",
"initial_release_date": "2019-05-24T10:57:06Z",
"revision_history": [
{
"date": "2019-05-24T10:57:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.aarch64",
"product": {
"name": "bluez-5.13-5.12.1.aarch64",
"product_id": "bluez-5.13-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.aarch64",
"product": {
"name": "bluez-cups-5.13-5.12.1.aarch64",
"product_id": "bluez-cups-5.13-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.aarch64",
"product": {
"name": "bluez-devel-5.13-5.12.1.aarch64",
"product_id": "bluez-devel-5.13-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.aarch64",
"product": {
"name": "bluez-test-5.13-5.12.1.aarch64",
"product_id": "bluez-test-5.13-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.aarch64",
"product": {
"name": "libbluetooth3-5.13-5.12.1.aarch64",
"product_id": "libbluetooth3-5.13-5.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-devel-64bit-5.13-5.12.1.aarch64_ilp32",
"product": {
"name": "bluez-devel-64bit-5.13-5.12.1.aarch64_ilp32",
"product_id": "bluez-devel-64bit-5.13-5.12.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libbluetooth3-64bit-5.13-5.12.1.aarch64_ilp32",
"product": {
"name": "libbluetooth3-64bit-5.13-5.12.1.aarch64_ilp32",
"product_id": "libbluetooth3-64bit-5.13-5.12.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.i586",
"product": {
"name": "bluez-5.13-5.12.1.i586",
"product_id": "bluez-5.13-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.i586",
"product": {
"name": "bluez-cups-5.13-5.12.1.i586",
"product_id": "bluez-cups-5.13-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.i586",
"product": {
"name": "bluez-devel-5.13-5.12.1.i586",
"product_id": "bluez-devel-5.13-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.i586",
"product": {
"name": "bluez-test-5.13-5.12.1.i586",
"product_id": "bluez-test-5.13-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.i586",
"product": {
"name": "libbluetooth3-5.13-5.12.1.i586",
"product_id": "libbluetooth3-5.13-5.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.ppc64le",
"product": {
"name": "bluez-5.13-5.12.1.ppc64le",
"product_id": "bluez-5.13-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.ppc64le",
"product": {
"name": "bluez-cups-5.13-5.12.1.ppc64le",
"product_id": "bluez-cups-5.13-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.ppc64le",
"product": {
"name": "bluez-devel-5.13-5.12.1.ppc64le",
"product_id": "bluez-devel-5.13-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.ppc64le",
"product": {
"name": "bluez-test-5.13-5.12.1.ppc64le",
"product_id": "bluez-test-5.13-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.ppc64le",
"product": {
"name": "libbluetooth3-5.13-5.12.1.ppc64le",
"product_id": "libbluetooth3-5.13-5.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.s390",
"product": {
"name": "bluez-5.13-5.12.1.s390",
"product_id": "bluez-5.13-5.12.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.s390",
"product": {
"name": "bluez-cups-5.13-5.12.1.s390",
"product_id": "bluez-cups-5.13-5.12.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.s390",
"product": {
"name": "bluez-devel-5.13-5.12.1.s390",
"product_id": "bluez-devel-5.13-5.12.1.s390"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.s390",
"product": {
"name": "bluez-test-5.13-5.12.1.s390",
"product_id": "bluez-test-5.13-5.12.1.s390"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.s390",
"product": {
"name": "libbluetooth3-5.13-5.12.1.s390",
"product_id": "libbluetooth3-5.13-5.12.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.s390x",
"product": {
"name": "bluez-5.13-5.12.1.s390x",
"product_id": "bluez-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.s390x",
"product": {
"name": "bluez-cups-5.13-5.12.1.s390x",
"product_id": "bluez-cups-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.s390x",
"product": {
"name": "bluez-devel-5.13-5.12.1.s390x",
"product_id": "bluez-devel-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.13-5.12.1.s390x",
"product": {
"name": "bluez-devel-32bit-5.13-5.12.1.s390x",
"product_id": "bluez-devel-32bit-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.s390x",
"product": {
"name": "bluez-test-5.13-5.12.1.s390x",
"product_id": "bluez-test-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.s390x",
"product": {
"name": "libbluetooth3-5.13-5.12.1.s390x",
"product_id": "libbluetooth3-5.13-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.13-5.12.1.s390x",
"product": {
"name": "libbluetooth3-32bit-5.13-5.12.1.s390x",
"product_id": "libbluetooth3-32bit-5.13-5.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.13-5.12.1.x86_64",
"product": {
"name": "bluez-5.13-5.12.1.x86_64",
"product_id": "bluez-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.13-5.12.1.x86_64",
"product": {
"name": "bluez-cups-5.13-5.12.1.x86_64",
"product_id": "bluez-cups-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.13-5.12.1.x86_64",
"product": {
"name": "bluez-devel-5.13-5.12.1.x86_64",
"product_id": "bluez-devel-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.13-5.12.1.x86_64",
"product": {
"name": "bluez-devel-32bit-5.13-5.12.1.x86_64",
"product_id": "bluez-devel-32bit-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.13-5.12.1.x86_64",
"product": {
"name": "bluez-test-5.13-5.12.1.x86_64",
"product_id": "bluez-test-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.13-5.12.1.x86_64",
"product": {
"name": "libbluetooth3-5.13-5.12.1.x86_64",
"product_id": "libbluetooth3-5.13-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.13-5.12.1.x86_64",
"product": {
"name": "libbluetooth3-32bit-5.13-5.12.1.x86_64",
"product_id": "libbluetooth3-32bit-5.13-5.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-cups-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-cups-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
"product_id": "SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-devel-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-devel-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x"
},
"product_reference": "bluez-devel-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-devel-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-devel-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-devel-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x"
},
"product_reference": "bluez-devel-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-devel-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x"
},
"product_reference": "bluez-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x"
},
"product_reference": "libbluetooth3-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x"
},
"product_reference": "bluez-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x"
},
"product_reference": "libbluetooth3-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x"
},
"product_reference": "bluez-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x"
},
"product_reference": "libbluetooth3-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64"
},
"product_reference": "bluez-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le"
},
"product_reference": "bluez-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x"
},
"product_reference": "bluez-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le"
},
"product_reference": "libbluetooth3-5.13-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x"
},
"product_reference": "libbluetooth3-5.13-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64"
},
"product_reference": "libbluetooth3-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-cups-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.13-5.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
},
"product_reference": "bluez-cups-5.13-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-9797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9797"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer over-read was observed in \"l2cap_dump\" function in \"tools/parser/l2cap.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9797",
"url": "https://www.suse.com/security/cve/CVE-2016-9797"
},
{
"category": "external",
"summary": "SUSE Bug 1013708 for CVE-2016-9797",
"url": "https://bugzilla.suse.com/1013708"
},
{
"category": "external",
"summary": "SUSE Bug 1013712 for CVE-2016-9797",
"url": "https://bugzilla.suse.com/1013712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-24T10:57:06Z",
"details": "low"
}
],
"title": "CVE-2016-9797"
},
{
"cve": "CVE-2016-9798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9798"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a use-after-free was identified in \"conf_opt\" function in \"tools/parser/l2cap.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9798",
"url": "https://www.suse.com/security/cve/CVE-2016-9798"
},
{
"category": "external",
"summary": "SUSE Bug 1013708 for CVE-2016-9798",
"url": "https://bugzilla.suse.com/1013708"
},
{
"category": "external",
"summary": "SUSE Bug 1013712 for CVE-2016-9798",
"url": "https://bugzilla.suse.com/1013712"
},
{
"category": "external",
"summary": "SUSE Bug 1013732 for CVE-2016-9798",
"url": "https://bugzilla.suse.com/1013732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-24T10:57:06Z",
"details": "low"
}
],
"title": "CVE-2016-9798"
},
{
"cve": "CVE-2016-9802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9802"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer over-read was identified in \"l2cap_packet\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9802",
"url": "https://www.suse.com/security/cve/CVE-2016-9802"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9802",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9802",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-24T10:57:06Z",
"details": "low"
}
],
"title": "CVE-2016-9802"
},
{
"cve": "CVE-2016-9917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9917"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer overflow was observed in \"read_n\" function in \"tools/hcidump.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9917",
"url": "https://www.suse.com/security/cve/CVE-2016-9917"
},
{
"category": "external",
"summary": "SUSE Bug 1015171 for CVE-2016-9917",
"url": "https://bugzilla.suse.com/1015171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-24T10:57:06Z",
"details": "moderate"
}
],
"title": "CVE-2016-9917"
},
{
"cve": "CVE-2016-9918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9918"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9918",
"url": "https://www.suse.com/security/cve/CVE-2016-9918"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:bluez-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libbluetooth3-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:bluez-devel-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:bluez-cups-5.13-5.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP4:bluez-cups-5.13-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-24T10:57:06Z",
"details": "moderate"
}
],
"title": "CVE-2016-9918"
}
]
}
suse-su-2019:0841-1
Vulnerability from csaf_suse
Published
2019-04-02 11:15
Modified
2019-04-02 11:15
Summary
Security update for bluez
Notes
Title of the patch
Security update for bluez
Description of the patch
This update for bluez fixes the following issues:
Security issue fixed:
- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)
Patchnames
SUSE-2019-841,SUSE-SLE-Module-Basesystem-15-2019-841,SUSE-SLE-Module-Desktop-Applications-15-2019-841,SUSE-SLE-Module-Development-Tools-OBS-15-2019-841,SUSE-SLE-Product-WE-15-2019-841
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bluez",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bluez fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-841,SUSE-SLE-Module-Basesystem-15-2019-841,SUSE-SLE-Module-Desktop-Applications-15-2019-841,SUSE-SLE-Module-Development-Tools-OBS-15-2019-841,SUSE-SLE-Product-WE-15-2019-841",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0841-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:0841-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190841-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:0841-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-April/005283.html"
},
{
"category": "self",
"summary": "SUSE Bug 1015173",
"url": "https://bugzilla.suse.com/1015173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9918 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9918/"
}
],
"title": "Security update for bluez",
"tracking": {
"current_release_date": "2019-04-02T11:15:00Z",
"generator": {
"date": "2019-04-02T11:15:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:0841-1",
"initial_release_date": "2019-04-02T11:15:00Z",
"revision_history": [
{
"date": "2019-04-02T11:15:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-5.13.10.aarch64",
"product": {
"name": "bluez-5.48-5.13.10.aarch64",
"product_id": "bluez-5.48-5.13.10.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-5.13.10.aarch64",
"product": {
"name": "bluez-cups-5.48-5.13.10.aarch64",
"product_id": "bluez-cups-5.48-5.13.10.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-5.13.10.aarch64",
"product": {
"name": "bluez-devel-5.48-5.13.10.aarch64",
"product_id": "bluez-devel-5.48-5.13.10.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-5.13.10.aarch64",
"product": {
"name": "bluez-test-5.48-5.13.10.aarch64",
"product_id": "bluez-test-5.48-5.13.10.aarch64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-5.13.10.aarch64",
"product": {
"name": "libbluetooth3-5.48-5.13.10.aarch64",
"product_id": "libbluetooth3-5.48-5.13.10.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-devel-64bit-5.48-5.13.10.aarch64_ilp32",
"product": {
"name": "bluez-devel-64bit-5.48-5.13.10.aarch64_ilp32",
"product_id": "bluez-devel-64bit-5.48-5.13.10.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libbluetooth3-64bit-5.48-5.13.10.aarch64_ilp32",
"product": {
"name": "libbluetooth3-64bit-5.48-5.13.10.aarch64_ilp32",
"product_id": "libbluetooth3-64bit-5.48-5.13.10.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-5.13.10.i586",
"product": {
"name": "bluez-5.48-5.13.10.i586",
"product_id": "bluez-5.48-5.13.10.i586"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-5.13.10.i586",
"product": {
"name": "bluez-cups-5.48-5.13.10.i586",
"product_id": "bluez-cups-5.48-5.13.10.i586"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-5.13.10.i586",
"product": {
"name": "bluez-devel-5.48-5.13.10.i586",
"product_id": "bluez-devel-5.48-5.13.10.i586"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-5.13.10.i586",
"product": {
"name": "bluez-test-5.48-5.13.10.i586",
"product_id": "bluez-test-5.48-5.13.10.i586"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-5.13.10.i586",
"product": {
"name": "libbluetooth3-5.48-5.13.10.i586",
"product_id": "libbluetooth3-5.48-5.13.10.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.48-5.13.10.noarch",
"product": {
"name": "bluez-auto-enable-devices-5.48-5.13.10.noarch",
"product_id": "bluez-auto-enable-devices-5.48-5.13.10.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-5.13.10.ppc64le",
"product": {
"name": "bluez-5.48-5.13.10.ppc64le",
"product_id": "bluez-5.48-5.13.10.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-5.13.10.ppc64le",
"product": {
"name": "bluez-cups-5.48-5.13.10.ppc64le",
"product_id": "bluez-cups-5.48-5.13.10.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-5.13.10.ppc64le",
"product": {
"name": "bluez-devel-5.48-5.13.10.ppc64le",
"product_id": "bluez-devel-5.48-5.13.10.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-5.13.10.ppc64le",
"product": {
"name": "bluez-test-5.48-5.13.10.ppc64le",
"product_id": "bluez-test-5.48-5.13.10.ppc64le"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-5.13.10.ppc64le",
"product": {
"name": "libbluetooth3-5.48-5.13.10.ppc64le",
"product_id": "libbluetooth3-5.48-5.13.10.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-5.13.10.s390x",
"product": {
"name": "bluez-5.48-5.13.10.s390x",
"product_id": "bluez-5.48-5.13.10.s390x"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-5.13.10.s390x",
"product": {
"name": "bluez-cups-5.48-5.13.10.s390x",
"product_id": "bluez-cups-5.48-5.13.10.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-5.13.10.s390x",
"product": {
"name": "bluez-devel-5.48-5.13.10.s390x",
"product_id": "bluez-devel-5.48-5.13.10.s390x"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-5.13.10.s390x",
"product": {
"name": "bluez-test-5.48-5.13.10.s390x",
"product_id": "bluez-test-5.48-5.13.10.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-5.13.10.s390x",
"product": {
"name": "libbluetooth3-5.48-5.13.10.s390x",
"product_id": "libbluetooth3-5.48-5.13.10.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-5.13.10.x86_64",
"product": {
"name": "bluez-5.48-5.13.10.x86_64",
"product_id": "bluez-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-5.13.10.x86_64",
"product": {
"name": "bluez-cups-5.48-5.13.10.x86_64",
"product_id": "bluez-cups-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-5.13.10.x86_64",
"product": {
"name": "bluez-devel-5.48-5.13.10.x86_64",
"product_id": "bluez-devel-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.48-5.13.10.x86_64",
"product": {
"name": "bluez-devel-32bit-5.48-5.13.10.x86_64",
"product_id": "bluez-devel-32bit-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-5.13.10.x86_64",
"product": {
"name": "bluez-test-5.48-5.13.10.x86_64",
"product_id": "bluez-test-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-5.13.10.x86_64",
"product": {
"name": "libbluetooth3-5.48-5.13.10.x86_64",
"product_id": "libbluetooth3-5.48-5.13.10.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.48-5.13.10.x86_64",
"product": {
"name": "libbluetooth3-32bit-5.48-5.13.10.x86_64",
"product_id": "libbluetooth3-32bit-5.48-5.13.10.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Desktop Applications 15",
"product": {
"name": "SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-desktop-applications:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15",
"product_id": "SUSE Linux Enterprise Workstation Extension 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-5.13.10.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.aarch64"
},
"product_reference": "libbluetooth3-5.48-5.13.10.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-5.13.10.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.ppc64le"
},
"product_reference": "libbluetooth3-5.48-5.13.10.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-5.13.10.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.s390x"
},
"product_reference": "libbluetooth3-5.48-5.13.10.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-5.13.10.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.x86_64"
},
"product_reference": "libbluetooth3-5.48-5.13.10.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-5.13.10.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.aarch64"
},
"product_reference": "bluez-5.48-5.13.10.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-5.13.10.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.ppc64le"
},
"product_reference": "bluez-5.48-5.13.10.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-5.13.10.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.s390x"
},
"product_reference": "bluez-5.48-5.13.10.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-5.13.10.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.x86_64"
},
"product_reference": "bluez-5.48-5.13.10.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-5.13.10.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.aarch64"
},
"product_reference": "bluez-devel-5.48-5.13.10.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-5.13.10.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.ppc64le"
},
"product_reference": "bluez-devel-5.48-5.13.10.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-5.13.10.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.s390x"
},
"product_reference": "bluez-devel-5.48-5.13.10.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-5.13.10.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.x86_64"
},
"product_reference": "bluez-devel-5.48-5.13.10.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.48-5.13.10.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15",
"product_id": "SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.13.10.x86_64"
},
"product_reference": "bluez-cups-5.48-5.13.10.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-9918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9918"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.13.10.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9918",
"url": "https://www.suse.com/security/cve/CVE-2016-9918"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.13.10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:libbluetooth3-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15:bluez-devel-5.48-5.13.10.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:bluez-cups-5.48-5.13.10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-02T11:15:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9918"
}
]
}
gsd-2016-9918
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-9918",
"description": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"id": "GSD-2016-9918",
"references": [
"https://www.suse.com/security/cve/CVE-2016-9918.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-9918"
],
"details": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"id": "GSD-2016-9918",
"modified": "2023-12-13T01:21:21.988413Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2016-9918",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html",
"refsource": "MISC",
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"name": "95013",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/95013"
},
{
"name": "openSUSE-SU-2019:1198",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:bluez_project:bluez:5.42:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2016-9918"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html",
"refsource": "MISC",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"name": "95013",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/95013"
},
{
"name": "openSUSE-SU-2019:1198",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2019-04-12T13:29Z",
"publishedDate": "2016-12-08T08:59Z"
}
}
}
opensuse-su-2024:12446-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
bluez-5.65-4.1 on GA media
Notes
Title of the patch
bluez-5.65-4.1 on GA media
Description of the patch
These are all security issues fixed in the bluez-5.65-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12446
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "bluez-5.65-4.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the bluez-5.65-4.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12446",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12446-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9801 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9918 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0129 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3588 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3588/"
}
],
"title": "bluez-5.65-4.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12446-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.65-4.1.aarch64",
"product": {
"name": "bluez-5.65-4.1.aarch64",
"product_id": "bluez-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.65-4.1.aarch64",
"product": {
"name": "bluez-auto-enable-devices-5.65-4.1.aarch64",
"product_id": "bluez-auto-enable-devices-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.65-4.1.aarch64",
"product": {
"name": "bluez-cups-5.65-4.1.aarch64",
"product_id": "bluez-cups-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-deprecated-5.65-4.1.aarch64",
"product": {
"name": "bluez-deprecated-5.65-4.1.aarch64",
"product_id": "bluez-deprecated-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.65-4.1.aarch64",
"product": {
"name": "bluez-devel-5.65-4.1.aarch64",
"product_id": "bluez-devel-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.65-4.1.aarch64",
"product": {
"name": "bluez-devel-32bit-5.65-4.1.aarch64",
"product_id": "bluez-devel-32bit-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-obexd-5.65-4.1.aarch64",
"product": {
"name": "bluez-obexd-5.65-4.1.aarch64",
"product_id": "bluez-obexd-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.65-4.1.aarch64",
"product": {
"name": "bluez-test-5.65-4.1.aarch64",
"product_id": "bluez-test-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "bluez-zsh-completion-5.65-4.1.aarch64",
"product": {
"name": "bluez-zsh-completion-5.65-4.1.aarch64",
"product_id": "bluez-zsh-completion-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.65-4.1.aarch64",
"product": {
"name": "libbluetooth3-5.65-4.1.aarch64",
"product_id": "libbluetooth3-5.65-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.65-4.1.aarch64",
"product": {
"name": "libbluetooth3-32bit-5.65-4.1.aarch64",
"product_id": "libbluetooth3-32bit-5.65-4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.65-4.1.ppc64le",
"product": {
"name": "bluez-5.65-4.1.ppc64le",
"product_id": "bluez-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.65-4.1.ppc64le",
"product": {
"name": "bluez-auto-enable-devices-5.65-4.1.ppc64le",
"product_id": "bluez-auto-enable-devices-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.65-4.1.ppc64le",
"product": {
"name": "bluez-cups-5.65-4.1.ppc64le",
"product_id": "bluez-cups-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-deprecated-5.65-4.1.ppc64le",
"product": {
"name": "bluez-deprecated-5.65-4.1.ppc64le",
"product_id": "bluez-deprecated-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.65-4.1.ppc64le",
"product": {
"name": "bluez-devel-5.65-4.1.ppc64le",
"product_id": "bluez-devel-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.65-4.1.ppc64le",
"product": {
"name": "bluez-devel-32bit-5.65-4.1.ppc64le",
"product_id": "bluez-devel-32bit-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-obexd-5.65-4.1.ppc64le",
"product": {
"name": "bluez-obexd-5.65-4.1.ppc64le",
"product_id": "bluez-obexd-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-test-5.65-4.1.ppc64le",
"product": {
"name": "bluez-test-5.65-4.1.ppc64le",
"product_id": "bluez-test-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bluez-zsh-completion-5.65-4.1.ppc64le",
"product": {
"name": "bluez-zsh-completion-5.65-4.1.ppc64le",
"product_id": "bluez-zsh-completion-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.65-4.1.ppc64le",
"product": {
"name": "libbluetooth3-5.65-4.1.ppc64le",
"product_id": "libbluetooth3-5.65-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.65-4.1.ppc64le",
"product": {
"name": "libbluetooth3-32bit-5.65-4.1.ppc64le",
"product_id": "libbluetooth3-32bit-5.65-4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.65-4.1.s390x",
"product": {
"name": "bluez-5.65-4.1.s390x",
"product_id": "bluez-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.65-4.1.s390x",
"product": {
"name": "bluez-auto-enable-devices-5.65-4.1.s390x",
"product_id": "bluez-auto-enable-devices-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.65-4.1.s390x",
"product": {
"name": "bluez-cups-5.65-4.1.s390x",
"product_id": "bluez-cups-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-deprecated-5.65-4.1.s390x",
"product": {
"name": "bluez-deprecated-5.65-4.1.s390x",
"product_id": "bluez-deprecated-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.65-4.1.s390x",
"product": {
"name": "bluez-devel-5.65-4.1.s390x",
"product_id": "bluez-devel-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.65-4.1.s390x",
"product": {
"name": "bluez-devel-32bit-5.65-4.1.s390x",
"product_id": "bluez-devel-32bit-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-obexd-5.65-4.1.s390x",
"product": {
"name": "bluez-obexd-5.65-4.1.s390x",
"product_id": "bluez-obexd-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-test-5.65-4.1.s390x",
"product": {
"name": "bluez-test-5.65-4.1.s390x",
"product_id": "bluez-test-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "bluez-zsh-completion-5.65-4.1.s390x",
"product": {
"name": "bluez-zsh-completion-5.65-4.1.s390x",
"product_id": "bluez-zsh-completion-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.65-4.1.s390x",
"product": {
"name": "libbluetooth3-5.65-4.1.s390x",
"product_id": "libbluetooth3-5.65-4.1.s390x"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.65-4.1.s390x",
"product": {
"name": "libbluetooth3-32bit-5.65-4.1.s390x",
"product_id": "libbluetooth3-32bit-5.65-4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.65-4.1.x86_64",
"product": {
"name": "bluez-5.65-4.1.x86_64",
"product_id": "bluez-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.65-4.1.x86_64",
"product": {
"name": "bluez-auto-enable-devices-5.65-4.1.x86_64",
"product_id": "bluez-auto-enable-devices-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.65-4.1.x86_64",
"product": {
"name": "bluez-cups-5.65-4.1.x86_64",
"product_id": "bluez-cups-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-deprecated-5.65-4.1.x86_64",
"product": {
"name": "bluez-deprecated-5.65-4.1.x86_64",
"product_id": "bluez-deprecated-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.65-4.1.x86_64",
"product": {
"name": "bluez-devel-5.65-4.1.x86_64",
"product_id": "bluez-devel-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.65-4.1.x86_64",
"product": {
"name": "bluez-devel-32bit-5.65-4.1.x86_64",
"product_id": "bluez-devel-32bit-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-obexd-5.65-4.1.x86_64",
"product": {
"name": "bluez-obexd-5.65-4.1.x86_64",
"product_id": "bluez-obexd-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.65-4.1.x86_64",
"product": {
"name": "bluez-test-5.65-4.1.x86_64",
"product_id": "bluez-test-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-zsh-completion-5.65-4.1.x86_64",
"product": {
"name": "bluez-zsh-completion-5.65-4.1.x86_64",
"product_id": "bluez-zsh-completion-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.65-4.1.x86_64",
"product": {
"name": "libbluetooth3-5.65-4.1.x86_64",
"product_id": "libbluetooth3-5.65-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.65-4.1.x86_64",
"product": {
"name": "libbluetooth3-32bit-5.65-4.1.x86_64",
"product_id": "libbluetooth3-32bit-5.65-4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-5.65-4.1.aarch64"
},
"product_reference": "bluez-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le"
},
"product_reference": "bluez-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-5.65-4.1.s390x"
},
"product_reference": "bluez-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-5.65-4.1.x86_64"
},
"product_reference": "bluez-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-auto-enable-devices-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64"
},
"product_reference": "bluez-auto-enable-devices-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-auto-enable-devices-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le"
},
"product_reference": "bluez-auto-enable-devices-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-auto-enable-devices-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x"
},
"product_reference": "bluez-auto-enable-devices-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-auto-enable-devices-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64"
},
"product_reference": "bluez-auto-enable-devices-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64"
},
"product_reference": "bluez-cups-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le"
},
"product_reference": "bluez-cups-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x"
},
"product_reference": "bluez-cups-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64"
},
"product_reference": "bluez-cups-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-deprecated-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64"
},
"product_reference": "bluez-deprecated-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-deprecated-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le"
},
"product_reference": "bluez-deprecated-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-deprecated-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x"
},
"product_reference": "bluez-deprecated-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-deprecated-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64"
},
"product_reference": "bluez-deprecated-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64"
},
"product_reference": "bluez-devel-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le"
},
"product_reference": "bluez-devel-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x"
},
"product_reference": "bluez-devel-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64"
},
"product_reference": "bluez-devel-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-32bit-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64"
},
"product_reference": "bluez-devel-32bit-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-32bit-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le"
},
"product_reference": "bluez-devel-32bit-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-32bit-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x"
},
"product_reference": "bluez-devel-32bit-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-32bit-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64"
},
"product_reference": "bluez-devel-32bit-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-obexd-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64"
},
"product_reference": "bluez-obexd-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-obexd-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le"
},
"product_reference": "bluez-obexd-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-obexd-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x"
},
"product_reference": "bluez-obexd-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-obexd-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64"
},
"product_reference": "bluez-obexd-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64"
},
"product_reference": "bluez-test-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le"
},
"product_reference": "bluez-test-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x"
},
"product_reference": "bluez-test-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64"
},
"product_reference": "bluez-test-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-zsh-completion-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64"
},
"product_reference": "bluez-zsh-completion-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-zsh-completion-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le"
},
"product_reference": "bluez-zsh-completion-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-zsh-completion-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x"
},
"product_reference": "bluez-zsh-completion-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-zsh-completion-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64"
},
"product_reference": "bluez-zsh-completion-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64"
},
"product_reference": "libbluetooth3-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le"
},
"product_reference": "libbluetooth3-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x"
},
"product_reference": "libbluetooth3-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
},
"product_reference": "libbluetooth3-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-32bit-5.65-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64"
},
"product_reference": "libbluetooth3-32bit-5.65-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-32bit-5.65-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le"
},
"product_reference": "libbluetooth3-32bit-5.65-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-32bit-5.65-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x"
},
"product_reference": "libbluetooth3-32bit-5.65-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-32bit-5.65-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64"
},
"product_reference": "libbluetooth3-32bit-5.65-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-9801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9801"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, a buffer overflow was observed in \"set_ext_ctrl\" function in \"tools/parser/l2cap.c\" source file when processing corrupted dump file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9801",
"url": "https://www.suse.com/security/cve/CVE-2016-9801"
},
{
"category": "external",
"summary": "SUSE Bug 1013732 for CVE-2016-9801",
"url": "https://bugzilla.suse.com/1013732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-9801"
},
{
"cve": "CVE-2016-9918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9918"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9918",
"url": "https://www.suse.com/security/cve/CVE-2016-9918"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9918"
},
{
"cve": "CVE-2021-0129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0129"
}
],
"notes": [
{
"category": "general",
"text": "Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0129",
"url": "https://www.suse.com/security/cve/CVE-2021-0129"
},
{
"category": "external",
"summary": "SUSE Bug 1186463 for CVE-2021-0129",
"url": "https://bugzilla.suse.com/1186463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-0129"
},
{
"cve": "CVE-2021-3588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3588"
}
],
"notes": [
{
"category": "general",
"text": "The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the \u0027offset\u0027 variable before using it as an index into an array for reading.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3588",
"url": "https://www.suse.com/security/cve/CVE-2021-3588"
},
{
"category": "external",
"summary": "SUSE Bug 1187165 for CVE-2021-3588",
"url": "https://bugzilla.suse.com/1187165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bluez-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-auto-enable-devices-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-cups-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-deprecated-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-devel-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-obexd-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-test-5.65-4.1.x86_64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.aarch64",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.s390x",
"openSUSE Tumbleweed:bluez-zsh-completion-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-32bit-5.65-4.1.x86_64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.aarch64",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.ppc64le",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.s390x",
"openSUSE Tumbleweed:libbluetooth3-5.65-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2021-3588"
}
]
}
opensuse-su-2019:1198-1
Vulnerability from csaf_opensuse
Published
2019-04-12 07:24
Modified
2019-04-12 07:24
Summary
Security update for bluez
Notes
Title of the patch
Security update for bluez
Description of the patch
This update for bluez fixes the following issues:
Security issue fixed:
- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-1198
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bluez",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bluez fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2016-9918: Fixed a out-of-bound read in the packet_hexdump function (bsc#1015173)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-1198",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_1198-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:1198-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NTXYHE6PGTMF25YP75XLZYTQRMVXASLS/#NTXYHE6PGTMF25YP75XLZYTQRMVXASLS"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:1198-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NTXYHE6PGTMF25YP75XLZYTQRMVXASLS/#NTXYHE6PGTMF25YP75XLZYTQRMVXASLS"
},
{
"category": "self",
"summary": "SUSE Bug 1015173",
"url": "https://bugzilla.suse.com/1015173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9918 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9918/"
}
],
"title": "Security update for bluez",
"tracking": {
"current_release_date": "2019-04-12T07:24:58Z",
"generator": {
"date": "2019-04-12T07:24:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:1198-1",
"initial_release_date": "2019-04-12T07:24:58Z",
"revision_history": [
{
"date": "2019-04-12T07:24:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-lp150.4.10.1.i586",
"product": {
"name": "bluez-5.48-lp150.4.10.1.i586",
"product_id": "bluez-5.48-lp150.4.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-lp150.4.10.1.i586",
"product": {
"name": "bluez-cups-5.48-lp150.4.10.1.i586",
"product_id": "bluez-cups-5.48-lp150.4.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-lp150.4.10.1.i586",
"product": {
"name": "bluez-devel-5.48-lp150.4.10.1.i586",
"product_id": "bluez-devel-5.48-lp150.4.10.1.i586"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-lp150.4.10.1.i586",
"product": {
"name": "bluez-test-5.48-lp150.4.10.1.i586",
"product_id": "bluez-test-5.48-lp150.4.10.1.i586"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-lp150.4.10.1.i586",
"product": {
"name": "libbluetooth3-5.48-lp150.4.10.1.i586",
"product_id": "libbluetooth3-5.48-lp150.4.10.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"product": {
"name": "bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"product_id": "bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bluez-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "bluez-5.48-lp150.4.10.1.x86_64",
"product_id": "bluez-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-cups-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "bluez-cups-5.48-lp150.4.10.1.x86_64",
"product_id": "bluez-cups-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "bluez-devel-5.48-lp150.4.10.1.x86_64",
"product_id": "bluez-devel-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"product_id": "bluez-devel-32bit-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "bluez-test-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "bluez-test-5.48-lp150.4.10.1.x86_64",
"product_id": "bluez-test-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "libbluetooth3-5.48-lp150.4.10.1.x86_64",
"product_id": "libbluetooth3-5.48-lp150.4.10.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"product": {
"name": "libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"product_id": "libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-lp150.4.10.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.i586"
},
"product_reference": "bluez-5.48-lp150.4.10.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "bluez-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch"
},
"product_reference": "bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.48-lp150.4.10.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.i586"
},
"product_reference": "bluez-cups-5.48-lp150.4.10.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-cups-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "bluez-cups-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-lp150.4.10.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.i586"
},
"product_reference": "bluez-devel-5.48-lp150.4.10.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "bluez-devel-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-devel-32bit-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-devel-32bit-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.48-lp150.4.10.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.i586"
},
"product_reference": "bluez-test-5.48-lp150.4.10.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bluez-test-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "bluez-test-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-lp150.4.10.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.i586"
},
"product_reference": "libbluetooth3-5.48-lp150.4.10.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "libbluetooth3-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64"
},
"product_reference": "libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-9918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9918"
}
],
"notes": [
{
"category": "general",
"text": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9918",
"url": "https://www.suse.com/security/cve/CVE-2016-9918"
},
{
"category": "external",
"summary": "SUSE Bug 1013893 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1013893"
},
{
"category": "external",
"summary": "SUSE Bug 1015173 for CVE-2016-9918",
"url": "https://bugzilla.suse.com/1015173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-auto-enable-devices-5.48-lp150.4.10.1.noarch",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-cups-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-devel-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:bluez-test-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-32bit-5.48-lp150.4.10.1.x86_64",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.i586",
"openSUSE Leap 15.0:libbluetooth3-5.48-lp150.4.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-12T07:24:58Z",
"details": "moderate"
}
],
"title": "CVE-2016-9918"
}
]
}
fkie_cve-2016-9918
Vulnerability from fkie_nvd
Published
2016-12-08 08:59
Modified
2025-04-12 10:46
Severity ?
Summary
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html | ||
| cve@mitre.org | http://www.securityfocus.com/bid/95013 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://www.spinics.net/lists/linux-bluetooth/msg68898.html | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/95013 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.spinics.net/lists/linux-bluetooth/msg68898.html | Exploit, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| bluez_project | bluez | 5.42 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:bluez_project:bluez:5.42:*:*:*:*:*:*:*",
"matchCriteriaId": "A9F3F320-092F-4B1C-9271-EBA2C01C2E84",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In BlueZ 5.42, an out-of-bounds read was identified in \"packet_hexdump\" function in \"monitor/packet.c\" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash."
},
{
"lang": "es",
"value": "En BlueZ 5.42, una lectura fuera de l\u00edmites fue identificada en la funci\u00f3n \"packet_hexdump\" en el archivo fuente \"monitor/packet.c\". Este problema puede ser desencadenado procesando un archivo de volcado corrupto y resultar\u00e1 en una ca\u00edda btmon."
}
],
"id": "CVE-2016-9918",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-12-08T08:59:04.740",
"references": [
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/95013"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00054.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/95013"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://www.spinics.net/lists/linux-bluetooth/msg68898.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…