Linux Distros Unpatched Vulnerability : CVE-2016-9800

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BlueZ 5.42, a buffer overflow was observed in pincodereplydump function in tools/parser/hci.c source file. The issue exists because pin array is overflowed b...

RHEL 7 : bluez (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bluez: double free in gatttool client disconnect callback handler in src/shared/att.c could lead to DoS o...

RHEL 5 : bluez (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bluez: double free in gatttool client disconnect callback handler in src/shared/att.c could lead to DoS o...

SUSE CVE-2016-9800

In BlueZ 5.42, a buffer overflow was observed in "pincodereplydump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pincodereplycp cp" parameter...

Mageia: Security Advisory (MGASA-2019-0052)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for bluez (EulerOS-SA-2021-2088)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:0510-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:4188-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for bluez (EulerOS-SA-2021-1460)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for bluez (EulerOS-SA-2021-1179)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : bluez (EulerOS-SA-2021-1179)

According to the versions of the bluez packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In BlueZ 5.42, a use-after-free was identified in 'confopt' function in 'tools/parser/l2cap.c' source file. This issue can be triggered by...

openSUSE Security Update : bluez (openSUSE-2019-1030)

This update for bluez fixes the following issues : Security issues fixed : - CVE-2016-9800: Fixed a buffer overflow in pincodereplydump function bsc1013721 - CVE-2016-9801: Fixed a buffer overflow in setextctrl function bsc1013732 This update was imported from the SUSE:SLE-15:Update update projec...

SUSE SLES12 Security Update : bluez (SUSE-SU-2019:0510-1) (BlueBorne)

This update for bluez fixes the following issues : Security issues fixed : CVE-2016-7837: Fixed possible buffer overflow, make sure we don't write past the end of the array.bsc1026652 CVE-2016-9800: Fix hcidump memory leak in pincodereplydump bsc1013721. CVE-2016-9801: Fixed a buffer overflow in...

openSUSE Security Update : bluez (openSUSE-2018-1596)

This update for bluez fixes the following issues : Security issues fixed : - CVE-2016-9800: Fixed a buffer overflow in pincodereplydump function bsc1013721 - CVE-2016-9801: Fixed a buffer overflow in setextctrl function bsc1013732 This update was imported from the SUSE:SLE-15:Update update projec...

SUSE SLED12 / SLES12 Security Update : bluez (SUSE-SU-2018:4188-1)

This update for bluez fixes the following issues : Security issues fixed : CVE-2016-9800: Fixed a buffer overflow in the pincodereplydump function bsc1013721 CVE-2016-9801: Fixed a buffer overflow in the setextctrl function bsc1013732 Note that Tenable Network Security has extracted the preceding...

SUSE-SU-2018:4188-1 Security update for bluez

This update for bluez fixes the following issues: Security issues fixed: - CVE-2016-9800: Fixed a buffer overflow in the pincodereplydump function bsc1013721 - CVE-2016-9801: Fixed a buffer overflow in the setextctrl function bsc1013732...

SUSE SLED12 / SLES12 Security Update : bluez (SUSE-SU-2018:1778-1) (BlueBorne)

This update for bluez fixes the following issues: Security issues fixed : - CVE-2016-9800: Fix hcidump memory leak in pincodereplydump bsc1013721. - CVE-2016-9804: Fix hcidump buffer overflow in commandsdump bsc1013877. - CVE-2016-7837: Fix possible buffer overflow, make sure we don't write past...

CVE-2016-9800

CVE-2016-9800 affects BlueZ 5.42. The overflow occurs in pin_code_reply_dump (tools/parser/hci.c) where the pin array is overflowed due to missing boundary checks on the buffer size from cp parameter (pin_code_reply_cp *cp). This is a buffer overflow risk that could impact Bluetooth-related tooli...