CLSA-2025-1755113613

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2025-1755113613

Upstream

CVE-2023-50229

CVE-2023-50230

Published

2025-08-13T19:33:37Z

Modified

2026-05-27T11:16:07.351038582Z

Summary

bluez: Fix of 2 CVEs

Details

CVE-2023-50229: fix heap-based buffer overflow vulnerability in handling Phone Book Access profile by adding proper validation of user-supplied data length before copying to buffer
CVE-2023-50230: fix heap-based buffer overflow vulnerability in Phone Book Access profile to prevent arbitrary code execution by validating user-supplied data length before copying to buffer

References

https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1755113613.html

Affected packages

TuxCare:AlmaLinux:9.2

bluez

Package

Name: bluez
Purl: pkg:rpm/tuxcare/bluez?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-cups

Package

Name: bluez-cups
Purl: pkg:rpm/tuxcare/bluez-cups?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-hid2hci

Package

Name: bluez-hid2hci
Purl: pkg:rpm/tuxcare/bluez-hid2hci?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-libs

Package

Name: bluez-libs
Purl: pkg:rpm/tuxcare/bluez-libs?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-libs-devel

Package

Name: bluez-libs-devel
Purl: pkg:rpm/tuxcare/bluez-libs-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-mesh

Package

Name: bluez-mesh
Purl: pkg:rpm/tuxcare/bluez-mesh?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"

bluez-obexd

Package

Name: bluez-obexd
Purl: pkg:rpm/tuxcare/bluez-obexd?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.64-2.el9.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1755113613.json"