18 matches found
Oracle Linux 5 : bluez-libs / and / bluez-utils (ELSA-2008-0581)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2008-0581 advisory. - Fix CVE-2008-2374 Resolves: 452880 bluez-utils: Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
Scientific Linux Security Update : bluez-libs and bluez-utils on SL4.x, SL5.x i386/x86_64
An input validation flaw was found in the Bluetooth Session Description Protocol SDP packet parser used by the Bluez Bluetooth utilities. A Bluetooth device with an already-established trust relationship, or a local user registering a service record via a UNIX socket or D-Bus interface, could cau...
openSUSE Security Update : bluez-audio (bluez-audio-100)
Missing length checks in bluez-libs could cause a buffer overflow in Bluetooth applications. Malicious bluetooth devices could potentially exploit that to execute arbitrary code CVE-2008-2374. Note: The source code of each application that uses vulnerable functions of bluez-libs needs to be adapt...
RedHat Update for bluez-libs and bluez-utils RHSA-2008:0581-01
Check for the Version of bluez-libs and bluez-utils OpenVAS Vulnerability Test RedHat Update for bluez-libs and bluez-utils RHSA-2008:0581-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
Fedora Update for bluez-utils FEDORA-2008-6140
Check for the Version of bluez-utils OpenVAS Vulnerability Test Fedora Update for bluez-utils FEDORA-2008-6140 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Fedora Update for bluez-libs FEDORA-2008-6140
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for bluez-libs FEDORA-2008-6133
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for bluez-utils FEDORA-2008-6140
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for bluez-utils FEDORA-2008-6133
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE 10 Security Update : bluez-audio (bluez-audio-5441)
Missing length checks in bluez-libs could cause a buffer overflow in Bluetooth applications. Malicious bluetooth devices could potentially exploit that to execute arbitrary code CVE-2008-2374. Note: The source code of each application that uses vulnerable functions of bluez-libs needs to be adapt...
SuSE 10 Security Update : Bluetooth utilities (ZYPP Patch Number 5437)
Missing length checks in bluez-libs could cause a buffer overflow in Bluetooth applications. Malicious bluetooth devices could potentially exploit that to execute arbitrary code. CVE-2008-2374 Note: The source code of each application that uses vulnerable functions of bluez-libs needs to be adapt...
[ MDVSA-2008:145 ] - Updated bluez/bluez-utils packages fix SDP packet parsing vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:145 http://www.mandriva.com/security/ Package : bluez Date : July 14, 2008 Affected: 2007.1, 2008.0, 2008.1 Problem Description: An input validation flaw was found in the Bluetooth Session Description Protoc...
RHEL 4 / 5 : bluez-libs and bluez-utils (RHSA-2008:0581)
Updated bluez-libs and bluez-utils packages that fix a security flaw are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The bluez-libs package contains libraries for use in Bluetooth...
bluez-libs and bluez-utils security update
bluez-libs: 3.7-1.1 - Fix CVE-2008-2374 Resolves: 452880 bluez-utils: 3.7-2.2 - Add explicit versioned Requires and BuildRequires for new bluez-libs 3.7-2.1 - Fix CVE-2008-2374 452715 SDP payload processing vulnerability...
CVE-2008-2374
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified other impact via a crafted length field th...
CVE-2008-2374
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified other impact via a crafted length field th...
CVE-2008-2374
CVE-2008-2374 affects BlueZ components: bluez-libs (versions 3.30 and older) and bluez-utils (older than 3.34). The issue is an input/length validation flaw in the SDP packet parser, allowing a remote SDP server to cause a denial of service and potentially other impact through crafted length fiel...
CVE-2008-2374
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified other impact via a crafted length field th...