Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
EUVDB-ID: #VU67750
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-39176
CWE-ID:
CWE-211 - Externally-generated error message containing sensitive information
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application while handling error conditions within profiles/audio/avrcp.c. A remote attacker on the local network can obtain sensitive information on the system.
MitigationUpdate the affected package bluez to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server for SAP: 15-SP1
SUSE Linux Enterprise High Performance Computing: 15-SP1-LTSS
SUSE Enterprise Storage: 6
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server: 15-SP1-LTSS
libbluetooth3-debuginfo: before 5.48-150000.5.46.1
libbluetooth3: before 5.48-150000.5.46.1
bluez-devel: before 5.48-150000.5.46.1
bluez-debugsource: before 5.48-150000.5.46.1
bluez-debuginfo: before 5.48-150000.5.46.1
bluez: before 5.48-150000.5.46.1
External linkshttp://www.suse.com/support/update/announcement/2023/suse-su-20230155-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU64523
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-39177
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to insufficient validation of user-supplied input when handling the A2DP profile in profiles/audio/avdtp.c. A remote attacker can pass specially crafted data to the system and execute arbitrary code.
Update the affected package bluez to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server for SAP: 15-SP1
SUSE Linux Enterprise High Performance Computing: 15-SP1-LTSS
SUSE Enterprise Storage: 6
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server: 15-SP1-LTSS
libbluetooth3-debuginfo: before 5.48-150000.5.46.1
libbluetooth3: before 5.48-150000.5.46.1
bluez-devel: before 5.48-150000.5.46.1
bluez-debugsource: before 5.48-150000.5.46.1
bluez-debuginfo: before 5.48-150000.5.46.1
bluez: before 5.48-150000.5.46.1
External linkshttp://www.suse.com/support/update/announcement/2023/suse-su-20230155-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.