Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia 8: 2021-0532 Moderate: BlueZ Memory Leak and Crash Threat

mageia
Calendar Grey December 2, 2021
Dist Mageia Esm H88
Updates to BlueZ in Mageia 8 resolve memory gaps and prevent remote failures stemming from protocol vulnerabilities.
BlueZ is a Bluetooth protocol stack for Linux

Summary

BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object, which can be caused by an attacker continuously sending sdp packets and this may cause the service of the target device to crash. (CVE-2021-41229)
An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call. (CVE-2021-43400)

References

- https://bugs.mageia.org/show_bug.cgi?id=29694

- https://ubuntu.com/security/notices/USN-5155-1

- https://www.cve.org/CVERecord?id=CVE-2021-41229

- https://www.cve.org/CVERecord?id=CVE-2021-43400

Topics%20covered

Topics Covered

security advisory update memory leak Bluetooth protocol issue Mageia

Resolution

SRPMS

- 8/core/bluez-5.55-3.3.mga8

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 02 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0532.html
Type: security
CVE: CVE-2021-41229, CVE-2021-43400

Topics%20covered

Topics Covered

security advisory update memory leak Bluetooth protocol issue Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here