[ubuntu/trusty-security] bluez 4.101-0ubuntu13.3 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Tue Sep 12 18:50:31 UTC 2017

bluez (4.101-0ubuntu13.3) trusty-security; urgency=medium

  * SECURITY UPDATE: information disclosure in service discovery
    protocol daemon.
    - debian/patches/CVE-2017-1000250.patch: validate continuation
      request size before sending response.
    - CVE-2017-1000250
  * SECURITY UPDATE: buffer overflow in command line tools
    - debian/patches/CVE-2016-7837.patch: ensure write does not go past
      end of array.
    - CVE-2016-7837

Date: 2017-09-12 06:09:29.401838+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Trusty-changes mailing list