vulnerability

Amazon Linux AMI 2: CVE-2022-0204: Security patch for bluez (ALAS-2023-2167)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:A/AC:L/Au:N/C:P/I:P/A:P)	Mar 10, 2022	Jul 27, 2023	Jul 27, 2023

Severity

CVSS

(AV:A/AC:L/Au:N/C:P/I:P/A:P)

Published

Mar 10, 2022

Added

Jul 27, 2023

Modified

Jul 27, 2023

Description

A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service.

Solution(s)

amazon-linux-ami-2-upgrade-bluezamazon-linux-ami-2-upgrade-bluez-cupsamazon-linux-ami-2-upgrade-bluez-debuginfoamazon-linux-ami-2-upgrade-bluez-hid2hciamazon-linux-ami-2-upgrade-bluez-libsamazon-linux-ami-2-upgrade-bluez-libs-devel

References

AMAZON-AL2/ALAS-2023-2167
CVE-2022-0204
https://attackerkb.com/topics/CVE-2022-0204

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today