Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
EUVDB-ID: #VU67750
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-39176
CWE-ID:
CWE-211 - Externally-generated error message containing sensitive information
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application while handling error conditions within profiles/audio/avrcp.c. A remote attacker on the local network can obtain sensitive information on the system.
MitigationUpdate the affected package bluez to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server for SAP: 15-SP3
SUSE Linux Enterprise Server: 15-SP3-LTSS
SUSE Linux Enterprise Realtime Extension: 15-SP3
SUSE Linux Enterprise High Performance Computing: 15-SP3-ESPOS - 15-SP3-LTSS
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
bluez-devel: before 5.55-150300.3.19.1
libbluetooth3-debuginfo: before 5.55-150300.3.19.1
libbluetooth3: before 5.55-150300.3.19.1
bluez-deprecated-debuginfo: before 5.55-150300.3.19.1
bluez-deprecated: before 5.55-150300.3.19.1
bluez-debugsource: before 5.55-150300.3.19.1
bluez-debuginfo: before 5.55-150300.3.19.1
bluez: before 5.55-150300.3.19.1
External linkshttp://www.suse.com/support/update/announcement/2023/suse-su-20230168-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU64523
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-39177
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to insufficient validation of user-supplied input when handling the A2DP profile in profiles/audio/avdtp.c. A remote attacker can pass specially crafted data to the system and execute arbitrary code.
Update the affected package bluez to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server for SAP: 15-SP3
SUSE Linux Enterprise Server: 15-SP3-LTSS
SUSE Linux Enterprise Realtime Extension: 15-SP3
SUSE Linux Enterprise High Performance Computing: 15-SP3-ESPOS - 15-SP3-LTSS
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
bluez-devel: before 5.55-150300.3.19.1
libbluetooth3-debuginfo: before 5.55-150300.3.19.1
libbluetooth3: before 5.55-150300.3.19.1
bluez-deprecated-debuginfo: before 5.55-150300.3.19.1
bluez-deprecated: before 5.55-150300.3.19.1
bluez-debugsource: before 5.55-150300.3.19.1
bluez-debuginfo: before 5.55-150300.3.19.1
bluez: before 5.55-150300.3.19.1
External linkshttp://www.suse.com/support/update/announcement/2023/suse-su-20230168-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.