UbuntuUpdates.org

Package "bluez"

Name: bluez

Description:

Bluetooth tools and daemons

Latest version: 5.55-0ubuntu1.2
Release: groovy (20.10)
Level: updates
Repository: main
Homepage: http://www.bluez.org

Links


Download "bluez"


Other versions of "bluez" in Groovy

Repository Area Version
base universe 5.55-0ubuntu1
base main 5.55-0ubuntu1
security main 5.55-0ubuntu1.2
security universe 5.55-0ubuntu1.2
updates universe 5.55-0ubuntu1.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.55-0ubuntu1.2 2021-06-16 15:06:32 UTC

  bluez (5.55-0ubuntu1.2) groovy-security; urgency=medium

  * SECURITY UPDATE: secure pairing passkey brute force
    - debian/patches/CVE-2020-26558.patch: fix not properly checking for
      secure flags in src/shared/att-types.h, src/shared/gatt-server.c.
    - CVE-2020-26558
  * SECURITY UPDATE: info disclosure via out of bounds read
    - debian/patches/CVE-2021-3588.patch: when client features is read
      check if the offset is within the cli_feat bounds in
      src/gatt-database.c.
    - CVE-2021-3588

 -- Marc Deslauriers <email address hidden> Wed, 09 Jun 2021 11:01:25 -0400

Source diff to previous version
CVE-2020-26558 Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the
CVE-2021-3588 The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an ar

Version: 5.55-0ubuntu1.1 2020-11-23 12:18:13 UTC

  bluez (5.55-0ubuntu1.1) groovy; urgency=medium

  * Added patches from the Raspberry Pi Foundation
    - d/p/raspi-bcm43xx-load-firmware.patch
    - d/p/raspi-bcm43xx-3wire.patch
    - d/p/raspi-cypress-305-bdaddr.patch
  * These patches fix Bluetooth operation on the Pi 400 (LP: #1903048)

 -- Dave Jones <email address hidden> Thu, 05 Nov 2020 13:39:07 +0000

1903048 [SRU] Bluetooth won't activate on the pi 400



About   -   Send Feedback to @ubuntu_updates