CVE-2022-0204
Summary
| CVE | CVE-2022-0204 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-03-10 17:44:00 UTC |
|---|
| Updated | 2023-06-26 18:57:00 UTC |
|---|
| Description | A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Heap overflow vulnerability in the implementation of the gatt protocol · Advisory · bluez/bluez · GitHub |
MISC |
github.com |
|
| shared/gatt-server: Fix heap overflow when appending prepare writes · bluez/bluez@591c546 · GitHub |
MISC |
github.com |
|
| BlueZ: Multiple Vulnerabilities (GLSA 202209-16) — Gentoo security |
GENTOO |
security.gentoo.org |
|
| [SECURITY] [DLA 3157-1] bluez security update |
MLIST |
lists.debian.org |
|
| 2039807 – (CVE-2022-0204) CVE-2022-0204 bluez: heap-based buffer overflow in the implementation of the gatt protocol |
MISC |
bugzilla.redhat.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 181160 Debian Security Update for bluez (DLA 3157-1)
- 183630 Debian Security Update for bluez (CVE-2022-0204)
- 198657 Ubuntu Security Notification for BlueZ Vulnerability (USN-5275-1)
- 355441 Amazon Linux Security Advisory for bluez : ALAS2023-2023-212
- 355701 Amazon Linux Security Advisory for bluez : ALAS2-2023-2167
- 671575 EulerOS Security Update for bluez (EulerOS-SA-2022-1557)
- 671653 EulerOS Security Update for bluez (EulerOS-SA-2022-1707)
- 671733 EulerOS Security Update for bluez (EulerOS-SA-2022-1784)
- 671735 EulerOS Security Update for bluez (EulerOS-SA-2022-1801)
- 671791 EulerOS Security Update for bluez (EulerOS-SA-2022-1858)
- 671795 EulerOS Security Update for bluez (EulerOS-SA-2022-1834)
- 671848 EulerOS Security Update for bluez (EulerOS-SA-2022-1882)
- 710631 Gentoo Linux BlueZ Multiple Vulnerabilities (GLSA 202209-16)
- 752482 SUSE Enterprise Linux Security Update for bluez (SUSE-SU-2022:2837-1)
- 752503 SUSE Enterprise Linux Security Update for bluez (SUSE-SU-2022:2883-1)
- 752524 SUSE Enterprise Linux Security Update for bluez (SUSE-SU-2022:2948-1)
- 752578 SUSE Enterprise Linux Security Update for bluez (SUSE-SU-2022:3247-1)
