Bug 1203120 - (CVE-2022-39177) VUL-0: CVE-2022-39177: bluez: incorrect capability parsing in AVCTP allows physically approximate attackers to cause a denial of service
(CVE-2022-39177)
VUL-0: CVE-2022-39177: bluez: incorrect capability parsing in AVCTP allows ph...
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Joey Lee
Security Team bot
https://smash.suse.de/issue/341391/
CVSSv3.1:SUSE:CVE-2022-39177:5.7:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-09-05 12:24 UTC by Carlos López
Modified: 2022-11-04 05:49 UTC (History)
4 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---
stoyan.manolov: needinfo? (jlee)


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Carlos López 2022-09-05 12:24:52 UTC
CVE-2022-39177

BlueZ before 5.59 allows physically proximate attackers to cause a denial of
service because malformed and invalid capabilities can be processed in
profiles/audio/avdtp.c.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-39177
https://www.cve.org/CVERecord?id=CVE-2022-39177
http://www.cvedetails.com/cve/CVE-2022-39177/
https://ubuntu.com/security/notices/USN-5481-1
https://bugs.launchpad.net/ubuntu/+source/bluez/+bug/1977968
Comment 1 Carlos López 2022-09-05 12:27:18 UTC
Affected:
 - SUSE:SLE-11-SP3:Update
 - SUSE:SLE-12-SP2:Update
 - SUSE:SLE-15:Update
 - SUSE:SLE-15-SP2:Update
 - SUSE:SLE-15-SP3:Update

SUSE:SLE-15-SP4:Update is already fixed.

Fixed in:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=7a80d2096f1b7125085e21448112aa02f49f5e9a
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=0388794dc5fdb73a4ea88bcf148de0a12b4364d4
Comment 2 Thomas Leroy 2022-09-26 15:18:23 UTC
Did you have the time to work on this Joey? :)