SuSE 10 Security Update : Bluetooth utilities (ZYPP Patch Number 5437)
High Nessus Plugin ID 34276
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionMissing length checks in bluez-libs could cause a buffer overflow in Bluetooth applications. Malicious bluetooth devices could potentially exploit that to execute arbitrary code. (CVE-2008-2374)
Note: The source code of each application that uses vulnerable functions of bluez-libs needs to be adapted to actually fix the problem.
SolutionApply ZYPP patch number 5437.