bluez 5.53-0ubuntu3.2 source package in Ubuntu

Changelog

bluez (5.53-0ubuntu3.2) focal-security; urgency=medium

  * SECURITY UPDATE: secure pairing passkey brute force
    - debian/patches/CVE-2020-26558.patch: fix not properly checking for
      secure flags in src/shared/att-types.h, src/shared/gatt-server.c.
    - CVE-2020-26558
  * SECURITY UPDATE: DoS or code execution via double-free
    - debian/patches/CVE-2020-27153.patch: fix possible crash on disconnect
      in src/shared/att.c.
    - CVE-2020-27153
  * SECURITY UPDATE: info disclosure via out of bounds read
    - debian/patches/CVE-2021-3588.patch: when client features is read
      check if the offset is within the cli_feat bounds in
      src/gatt-database.c.
    - CVE-2021-3588

 -- Marc Deslauriers <email address hidden>  Wed, 09 Jun 2021 11:06:38 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Focal
Original maintainer:
Bluetooth
Architectures:
linux-any all
Section:
admin
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
bluez_5.53.orig.tar.xz 1.9 MiB 38aa2da8302fefad53116bb281a11968732a42eeb19c5fb3668342f39b7938bc
bluez_5.53-0ubuntu3.2.debian.tar.xz 45.8 KiB e66d204c2b8fe0329f0f0ed9a90e63313f6fd6368fa87034ff33c25cd1365dd3
bluez_5.53-0ubuntu3.2.dsc 2.7 KiB fcc903b964d1bb1af4b8b04f3107a6cf740da1c0728a87114246482644b23c01

View changes file

Binary packages built by this source

bluetooth: Bluetooth support

 This package provides all of the different plugins supported
 by the Bluez bluetooth stack.

bluez: Bluetooth tools and daemons

 This package contains tools and system daemons for using Bluetooth devices.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-cups: Bluetooth printer driver for CUPS

 This package contains a driver to let CUPS print to Bluetooth-connected
 printers.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-dbg: Bluetooth tools and daemons (with debugging symbols)

 This package contains tools and system daemons for using Bluetooth devices.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).
 .
 This package contains the debugging symbols.

bluez-hcidump: Analyses Bluetooth HCI packets

 The hcidump utility allows the monitoring of Bluetooth activity.
 It provides a disassembly of the Bluetooth traffic and can display
 packets from higher level protocols such as RFCOMM, SDP and BNEP.
 .
 This was the software that is independent as bluez-hcidump, but this has been
 integrated into BlueZ from BlueZ 5.0.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-obexd: bluez obex daemon

 This package contains a OBEX(OBject EXchange) daemon.
 .
 OBEX is communication protocol to facilitate the exchange of the binary
 object between the devices.
 .
 This was the software that is independent as obexd, but this has been
 integrated into BlueZ from BlueZ 5.0.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

bluez-tests: BlueZ test tools and scripts

 This package contains test tools and scripts used for testing BlueZ.
 .
 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth-dev: Development files for using the BlueZ Linux Bluetooth library

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth3: Library to use the BlueZ Linux Bluetooth stack

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).

libbluetooth3-dbg: Library to use the BlueZ Linux Bluetooth stack with debugging symbols

 BlueZ is the official Linux Bluetooth protocol stack. It is an Open Source
 project distributed under GNU General Public License (GPL).
 .
 This package contains the debugging symbols.