bluez 5.48-0ubuntu3.4 source package in Ubuntu

Changelog

bluez (5.48-0ubuntu3.4) bionic-security; urgency=medium

  * SECURITY UPDATE: privilege escalation via improper access control
    - debian/patches/CVE-2020-0556-1.patch: HOGP must only accept data from
      bonded devices in profiles/input/hog.c.
    - debian/patches/CVE-2020-0556-2.patch: HID accepts bonded device
      connections only in profiles/input/device.c, profiles/input/device.h,
      profiles/input/input.conf, profiles/input/manager.c.
    - debian/patches/CVE-2020-0556-3.patch: attempt to set security level
      if not bonded in profiles/input/hog.c.
    - debian/patches/CVE-2020-0556-4.patch: add LEAutoSecurity setting to
      input.conf in profiles/input/device.h, profiles/input/hog.c,
      profiles/input/input.conf, profiles/input/manager.c.
    - CVE-2020-0556

 -- Marc Deslauriers <email address hidden>  Mon, 23 Mar 2020 08:26:28 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Bionic
Original maintainer:
Bluetooth
Architectures:
linux-any all
Section:
admin
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
bluez_5.48.orig.tar.xz 1.7 MiB b9a8723072ef66bae7ec301c774902ebcb444c9c5b149b5a199e60a1ba970e90
bluez_5.48-0ubuntu3.4.debian.tar.xz 43.1 KiB a90ce444b67cbf41faf6b9213ed88844fc06d21e082fef0862cb2b5ba2bd57c1
bluez_5.48-0ubuntu3.4.dsc 2.8 KiB 13e44968fe48d92ba25b61b7b178c5061ac30f65a3a41adc76a3bff47b7c7d9c

View changes file

Binary packages built by this source

bluetooth: Bluetooth support

 This package provides all of the different plugins supported
 by the Bluez bluetooth stack.

bluez: Bluetooth tools and daemons

 This package contains tools and system daemons for using Bluetooth devices.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-cups: Bluetooth printer driver for CUPS

 This package contains a driver to let CUPS print to Bluetooth-connected
 printers.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-dbg: Bluetooth tools and daemons (with debugging symbols)

 This package contains tools and system daemons for using Bluetooth devices.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).
 .
 This package contains the debugging symbols.

bluez-hcidump: Analyses Bluetooth HCI packets

 The hcidump utility allows the monitoring of Bluetooth activity.
 It provides a disassembly of the Bluetooth traffic and can display
 packets from higher level protocols such as RFCOMM, SDP and BNEP.
 .
 This was the software that is independent as bluez-hcidump, but this has been
 integrated into BlueZ from BlueZ 5.0.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-obexd: bluez obex daemon

 This package contains a OBEX(OBject EXchange) daemon.
 .
 OBEX is communication protocol to facilitate the exchange of the binary
 object between the devices.
 .
 This was the software that is independent as obexd, but this has been
 integrated into BlueZ from BlueZ 5.0.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-tests: BlueZ test tools and scripts

 This package contains test tools and scripts used for testing BlueZ.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth-dev: Development files for using the BlueZ Linux Bluetooth library

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth3: Library to use the BlueZ Linux Bluetooth stack

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth3-dbg: Library to use the BlueZ Linux Bluetooth stack with debugging symbols

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).
 .
 This package contains the debugging symbols.