摘要:
bluez security update
安全等级: Critical
公告ID: KylinSec-SA-2022-2903
发布日期: 2025年3月11日
关联CVE: CVE-2021-43400
This package provides all utilities for use in Bluetooth applications. The BLUETOOTH trademarks are owned by Bluetooth SIG, Inc., U.S.A.
Security Fix(es):
An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call.(CVE-2021-43400)
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2021-43400 | KY3.4-4A | bluez | Fixed |
| CVE-2021-43400 | KY3.4-5A | bluez | Fixed |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| bluez-help | noarch | 5.54-7.kb1.ky3 |
| bluez | x86_64 | 5.54-7.kb1.ky3 |
| bluez-cups | x86_64 | 5.54-7.kb1.ky3 |
| bluez-devel | x86_64 | 5.54-7.kb1.ky3 |
| bluez-libs | x86_64 | 5.54-7.kb1.ky3 |
| bluez | aarch64 | 5.54-7.kb1.ky3 |
| bluez-cups | aarch64 | 5.54-7.kb1.ky3 |
| bluez-devel | aarch64 | 5.54-7.kb1.ky3 |
| bluez-libs | aarch64 | 5.54-7.kb1.ky3 |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| bluez-help | noarch | 5.54-7.kb1.ky3 |
| bluez | x86_64 | 5.54-7.kb1.ky3 |
| bluez-cups | x86_64 | 5.54-7.kb1.ky3 |
| bluez-devel | x86_64 | 5.54-7.kb1.ky3 |
| bluez-libs | x86_64 | 5.54-7.kb1.ky3 |
| bluez | aarch64 | 5.54-7.kb1.ky3 |
| bluez-cups | aarch64 | 5.54-7.kb1.ky3 |
| bluez-devel | aarch64 | 5.54-7.kb1.ky3 |
| bluez-libs | aarch64 | 5.54-7.kb1.ky3 |
dnf update bluez-cups bluez-libs bluez-devel bluez-help bluez
