Mageia 2021-0532: bluez security update

Advisories

MGASA-2021-0532 - Updated bluez packages fix security vulnerability

Publication date: 02 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0532.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2021-41229,
     CVE-2021-43400

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a
vulnerability exists in sdp_cstate_alloc_buf which allocates memory which
will always be hung in the singly linked list of cstates and will not be
freed. This will cause a memory leak over time. The data can be a very
large object, which can be caused by an attacker continuously sending sdp
packets and this may cause the service of the target device to crash.
(CVE-2021-41229)

An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free
can occur when a client disconnects during D-Bus processing of a WriteValue
call. (CVE-2021-43400)

References:
- https://bugs.mageia.org/show_bug.cgi?id=29694
- https://ubuntu.com/security/notices/USN-5155-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41229
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43400

SRPMS:
- 8/core/bluez-5.55-3.3.mga8

Mageia 2021-0532: bluez security update

BlueZ is a Bluetooth protocol stack for Linux

Summary

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object, which can be caused by an attacker continuously sending sdp packets and this may cause the service of the target device to crash. (CVE-2021-41229)
An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call. (CVE-2021-43400)

References

- https://bugs.mageia.org/show_bug.cgi?id=29694

- https://ubuntu.com/security/notices/USN-5155-1

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41229

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43400

Resolution

MGASA-2021-0532 - Updated bluez packages fix security vulnerability

SRPMS

- 8/core/bluez-5.55-3.3.mga8

Severity
Publication date: 02 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0532.html
Type: security
CVE: CVE-2021-41229, CVE-2021-43400

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.