Author: carnil
Date: 2016-12-05 16:45:42 +0000 (Mon, 05 Dec 2016)
New Revision: 46791
Modified:
data/CVE/list
Log:
Add bluez issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-05 16:36:05 UTC (rev 46790)
+++ data/CVE/list 2016-12-05 16:45:42 UTC (rev 46791)
@@ -5312,6 +5312,30 @@
RESERVED
CVE-2017-0381
RESERVED
+CVE-2016-9804 [buffer overflow in commands_dump()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
+CVE-2016-9803 [out-of-bounds read in le_meta_ev_dump()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
+CVE-2016-9802 [buffer over-read in l2cap_packet()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68898.html
+CVE-2016-9801 [buffer overflow in set_ext_ctrl()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
+CVE-2016-9800 [buffer overflow in pin_code_reply_dump()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
+CVE-2016-9799 [buffer overflow in pklg_read_hci()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68898.html
+CVE-2016-9798 [use-after-free in conf_opt()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
+CVE-2016-9797 [bluez: buffer over-read in l2cap_dump()]
+ - bluez <unfixed>
+ NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html
CVE-2016-9794 [Linux kernel: ALSA: use-after-free in,kill_fasync]
- linux 4.7.2-1
NOTE: https://patchwork.kernel.org/patch/8752621/
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
