Oval Definition:
oval:com.ubuntu.xenial:def:20169803000
Revision Date
:
2016-12-03
Version
:
1
Title
:
CVE-2016-9803 on Ubuntu 16.04 LTS (xenial) - low.
Description
:
In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" function in "tools/parser/hci.c" source file. This issue exists because 'subevent' (which is used to read correct element from 'ev_le_meta_str' array) is overflowed.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-9803
Platform(s)
:
Ubuntu 16.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed.
AND
The 'bluez' package in xenial is affected, but a decision has been made to defer addressing it (note: '2019-04-23').
BACK