Bug 1026652 - (CVE-2016-7837) VUL-1: CVE-2016-7837: bluez: Buffer overflow in parse_line function
(CVE-2016-7837)
VUL-1: CVE-2016-7837: bluez: Buffer overflow in parse_line function
Status: REOPENED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/180789/
CVSSv2:SUSE:CVE-2016-7837:4.1:(AV:L/A...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2017-02-23 13:42 UTC by Marcus Meissner
Modified: 2020-06-13 21:06 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments
xx.psload (502 bytes, text/plain)
2017-02-23 13:50 UTC, Marcus Meissner
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2017-02-23 13:42:09 UTC
http://git.kernel.org/cgit/bluetooth/bluez.git/commit/?id=8514068150759c1d6a46d4605d2351babfde1601

tools/csr: Fix possible buffer overflow
Make sure we don't write past the end of the array.

In the csr commandline tool.
Comment 1 Marcus Meissner 2017-02-23 13:50:08 UTC
Created attachment 715242 [details]
xx.psload

QA REPRODUCER:

bccmd psload xx.psload

might crash with a stack overflow. this need s a bluetooth device enabled
Comment 2 Swamp Workflow Management 2017-02-23 23:01:18 UTC
bugbot adjusting priority
Comment 5 Swamp Workflow Management 2017-10-20 16:18:04 UTC
openSUSE-SU-2017:2810-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1026652,1057342
CVE References: CVE-2016-7837,CVE-2017-1000250
Sources used:
openSUSE Leap 42.3 (src):    bluez-5.41-6.1
openSUSE Leap 42.2 (src):    bluez-5.41-2.5.1
Comment 6 Al Cho 2018-01-23 11:24:03 UTC
Close this issue, because already patched.
Comment 9 Swamp Workflow Management 2018-06-21 16:34:19 UTC
SUSE-SU-2018:1778-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1013721,1013877,1026652,1057342
CVE References: CVE-2016-7837,CVE-2016-9800,CVE-2016-9804,CVE-2017-1000250
Sources used:
SUSE Linux Enterprise Workstation Extension 12-SP3 (src):    bluez-5.13-5.4.1
SUSE Linux Enterprise Software Development Kit 12-SP3 (src):    bluez-5.13-5.4.1
SUSE Linux Enterprise Server 12-SP3 (src):    bluez-5.13-5.4.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    bluez-5.13-5.4.1
Comment 12 Swamp Workflow Management 2019-02-28 14:09:54 UTC
SUSE-SU-2019:0510-1: An update that fixes 6 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1013721,1013732,1013877,1015173,1026652,1057342
CVE References: CVE-2016-7837,CVE-2016-9800,CVE-2016-9801,CVE-2016-9804,CVE-2016-9918,CVE-2017-1000250
Sources used:
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    bluez-5.13-3.10.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    bluez-5.13-3.10.1
SUSE Linux Enterprise Server 12-LTSS (src):    bluez-5.13-3.10.1