Wind River Support Network

HomeDefectsLIN9-2668

Fixed

LIN9-2668 : Security Advisory - bluez - CVE-2016-9798

Created: Dec 16, 2016 Updated: Nov 6, 2018

Resolved Date: Oct 31, 2018

Found In Version: unknown

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

In BlueZ 5.42, a use-after-free was identified in conf_opt function in tools/parser/l2cap.c source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9798

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2016-9798