Package "bluez"

Name:	bluez
Description:	Bluetooth tools and daemons
Latest version:	5.48-0ubuntu3.9
Release:	bionic (18.04)
Level:	security
Repository:	main
Homepage:	http://www.bluez.org

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "bluez"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "bluez" in Bionic

Repository	Area	Version
base	main	5.48-0ubuntu3
base	universe	5.48-0ubuntu3
security	universe	5.48-0ubuntu3.9
updates	universe	5.48-0ubuntu3.9
updates	main	5.48-0ubuntu3.9

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 5.48-0ubuntu3.4 2020-03-30 16:06:13 UTC

bluez (5.48-0ubuntu3.4) bionic-security; urgency=medium * SECURITY UPDATE: privilege escalation via improper access control - debian/patches/CVE-2020-0556-1.patch: HOGP must only accept data from bonded devices in profiles/input/hog.c. - debian/patches/CVE-2020-0556-2.patch: HID accepts bonded device connections only in profiles/input/device.c, profiles/input/device.h, profiles/input/input.conf, profiles/input/manager.c. - debian/patches/CVE-2020-0556-3.patch: attempt to set security level if not bonded in profiles/input/hog.c. - debian/patches/CVE-2020-0556-4.patch: add LEAutoSecurity setting to input.conf in profiles/input/device.h, profiles/input/hog.c, profiles/input/input.conf, profiles/input/manager.c. - CVE-2020-0556 -- Marc Deslauriers <email address hidden> Mon, 23 Mar 2020 08:26:28 -0400

CVE-2020-0556

Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege an

About - Send Feedback to @ubuntu_updates

Package "bluez"

Links

Download "bluez"

Other versions of "bluez" in Bionic

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

base

PPA updates